Linux主机操作系统加固规范
目 录
1 账号管理、认证授权 1
1.1 账号 1
1.1.1 SHG-Linux-01-01-01 1
1.1.2 SHG-Linux-01-01-02 2
1.1.3 SHG-Linux-01-01-03 3
1.1.4 SHG-Linux-01-01-04 4
1.1.5 SHG-Linux-01-01-05 5
1.1.6 SHG-Linux-01-01-06 6
1.2 口令 7
1.2.1 SHG-Linux-01-02-01 7
1.2.2 SHG-Linux-01-02-02 8
1.2.3 SHG-Linux-01-02-03 8
1.3 文件与授权 9
1.3.1 SHG-Linux-01-03-01 9
1.3.2 SHG-Linux-01-03-02 10
1.3.3 SHG-Linux-01-03-03 12
1.3.4 SHG-Linux-01-03-04 14
1.3.5 SHG-Linux-01-03-05 15
1.3.6 SHG-Linux-01-03-06 16
1.3.7 SHG-Linux-01-03-07 18
1.3.8 SHG-Linux-01-03-08 18
2 日志配置 19
2.1.1 SHG-Linux-02-01-01 19
2.1.2 SHG-Linux-02-01-02 20
2.1.3 SHG-Linux-02-01-03 21
2.1.4 SHG-Linux-02-01-04 22
2.1.5 SHG-Linux-02-01-05 23
3 通信协议 24
3.1 IP 协议安全 24
3.1.1 SHG-Linux-03-01-01 24
3.1.2 SHG-Linux-03-01-02 25
3.1.3 SHG-Linux-03-01-03 26
3.1.4 SHG-Linux-03-01-04 27
3.1.5 SHG-Linux-03-01-05 28
3.1.6 SHG-Linux-03-01-06 29
4 设备其他安全配置要求 30
4.1 补丁管理 30
4.1.1 SHG-Linux-04-01-01 30
4.2 服务进程和启动 31
4.2.1 SHG-Linux-04-02-01 31
4.2.2 SHG-Linux-04-02-02 33
4.2.3 SHG-Linux-04-02-03 34
4.2.4 SHG-Linux-04-02-04 35
4.2.5 SHG-Linux-04-02-05 36
ANNER
4.3 B 与屏幕保护 37
4.3.1 SHG-Linux-04-03-01 37
4.3.2 SHG-Linux-04-03-02 38
4.3.3 SHG-Linux-04-03-03 39
4.4 可疑文件 42
4.4.1 SHG-Linux-04-04-01 42