远程控制与数据库安全

已于 2024-06-06 09:37:09 修改
阅读量1.3k 收藏 12
点赞数 25
文章标签: linux
于 2024-05-23 00:18:37 首次发布
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/weixin_52532523/article/details/138604926
版权

远程控制与数据库安全

实验准备

软件:VMware Workstation Pro
虚拟机:Red Hat Enterprise Linux 7 服务器,Red Hat Enterprise Linux 7 客户端
网络模式:NAT模式

1、配置服务器及客户端网络
在这里插入图片描述
服务器ip

[root@localhost 桌面]# ifconfig 
eno16777736: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 192.168.13.131  netmask 255.255.255.0  broadcast 192.168.13.255
        inet6 fe80::20c:29ff:feb8:5c2f  prefixlen 64  scopeid 0x20<link>
        ether 00:0c:29:b8:5c:2f  txqueuelen 1000  (Ethernet)
        RX packets 171  bytes 13044 (12.7 KiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 97  bytes 10353 (10.1 KiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

lo: flags=73<UP,LOOPBACK,RUNNING>  mtu 65536
        inet 127.0.0.1  netmask 255.0.0.0
        inet6 ::1  prefixlen 128  scopeid 0x10<host>
        loop  txqueuelen 0  (Local Loopback)
        RX packets 262  bytes 22320 (21.7 KiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 262  bytes 22320 (21.7 KiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

客户端ip

[root@localhost 桌面]# ifconfig 
eno16777736: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
       inet 192.168.13.132  netmask 255.255.255.0  broadcast 192.168.13.255
       inet6 fe80::20c:29ff:fedd:7c41  prefixlen 64  scopeid 0x20<link>
       ether 00:0c:29:dd:7c:41  txqueuelen 1000  (Ethernet)
       RX packets 35  bytes 3366 (3.2 KiB)
       RX errors 0  dropped 0  overruns 0  frame 0
       TX packets 30  bytes 3693 (3.6 KiB)
       TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

lo: flags=73<UP,LOOPBACK,RUNNING>  mtu 65536
       inet 127.0.0.1  netmask 255.0.0.0
       inet6 ::1  prefixlen 128  scopeid 0x10<host>
       loop  txqueuelen 0  (Local Loopback)
       RX packets 262  bytes 22320 (21.7 KiB)
       RX errors 0  dropped 0  overruns 0  frame 0
       TX packets 262  bytes 22320 (21.7 KiB)
       TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
1、设置镜像,配置yum源
![在这里插入图片描述](https://img-blog.csdnimg.cn/direct/5c1782d0122140c0be8c70114c9cec2f.png)
连接cd小光标
![在这里插入图片描述](https://img-blog.csdnimg.cn/direct/671ee0fc634940bdb8d2e80736df8b51.png)
```java
[root@localhost 桌面]# mkdir /mnt/cdrom
[root@localhost 桌面]# mount /dev/sr0 /mnt/cdrom/
mount: /dev/sr0 写保护,将以只读方式挂载
[root@localhost 桌面]# vim /etc/yum.repos.d/a.repo
[root@localhost 桌面]# cat /etc/yum.repos.d/a.repo 
[a]
name=a
baseurl=file:///mnt/cdrom
enable=1
gpgcheck=0
[root@localhost 桌面]# yum repolist 
已加载插件:langpacks, product-id, subscription-manager
This system is not registered to Red Hat Subscription Management. You can use subscription-manager to register.
a                                                                                                                                                                     | 4.1 kB  00:00:00     
(1/2): a/group_gz                                                                                                                                                     | 134 kB  00:00:00     
(2/2): a/primary_db                                                                                                                                                   | 3.4 MB  00:00:00     
源标识                                                                                        源名称                                                                                    状态
a                                                                                             a                                                                                         4,305
repolist: 4,305
[root@localhost 桌面]# yum install mariadb mariadb-server -y
[root@localhost 桌面]# systemctl start  mariadb
[root@localhost 桌面]# systemctl status mariadb.service 
mariadb.service - MariaDB database server
  Loaded: loaded (/usr/lib/systemd/system/mariadb.service; disabled)
  Active: active (running) since 四 2024-05-09 11:06:54 CST; 2min 26s ago
 Process: 13706 ExecStartPost=/usr/libexec/mariadb-wait-ready $MAINPID (code=exited, status=0/SUCCESS)
 Process: 13627 ExecStartPre=/usr/libexec/mariadb-prepare-db-dir %n (code=exited, status=0/SUCCESS)
Main PID: 13705 (mysqld_safe)
  CGroup: /system.slice/mariadb.service
          ├─13705 /bin/sh /usr/bin/mysqld_safe --basedir=/usr

在完成MariaDB数据库软件程序的安装并确保其成功启动后,我们建议先不要急于使用它。为了保障数据库的安全性和稳定运行,首要任务是进行初始化操作。该初始化流程包含以下五个关键步骤:
设置root管理员在数据库中的密码值(该密码并非root管理员在系统中的密码,密码值默认为空,直接回车即可)。

设置root管理员在数据库中的专有密码。

删除匿名用户,并使用root管理员从远程登录数据库,以确保数据库上运行的业务的安全性。

删除默认的测试数据库,取消测试数据库的一系列访问权限。

刷新授权列表,让初始化的设定立即生效。

[root@localhost 桌面]# mysql_secure_installation 
/usr/bin/mysql_secure_installation:379: find_mysql_client: 未找到命令

NOTE: RUNNING ALL PARTS OF THIS SCRIPT IS RECOMMENDED FOR ALL MariaDB
      SERVERS IN PRODUCTION USE!  PLEASE READ EACH STEP CAREFULLY!

In order to log into MariaDB to secure it, we'll need the current
password for the root user.  If you've just installed MariaDB, and
you haven't set the root password yet, the password will be blank,
so you should just press enter here.

Enter current password for root (enter for none): 输入管理员原始密码,默认为空值,直接回车即可
OK, successfully used password, moving on...

Setting the root password ensures that nobody can log into the MariaDB
root user without the proper authorisation.

Set root password? [Y/n] y(设置管理员密码)
New password: 
Re-enter new password: 
Password updated successfully!
Reloading privilege tables..
 ... Success!


By default, a MariaDB installation has an anonymous user, allowing anyone
to log into MariaDB without having to have a user account created for
them.  This is intended only for testing, and to make the installation
go a bit smoother.  You should remove them before moving into a
production environment.

Remove anonymous users? [Y/n] y(删除匿名账户)
 ... Success!

Normally, root should only be allowed to connect from 'localhost'.  This
ensures that someone cannot guess at the root password from the network.

Disallow root login remotely? [Y/n] y(禁止管理员从远程登录)
 ... Success!

By default, MariaDB comes with a database named 'test' that anyone can
access.  This is also intended only for testing, and should be removed
before moving into a production environment.

Remove test database and access to it? [Y/n] y(删除测试数据库及其访问权限)
 - Dropping test database...
 ... Success!
 - Removing privileges on test database...
 ... Success!

Reloading the privilege tables will ensure that all changes made so far
will take effect immediately.

Reload privilege tables now? [Y/n] y (刷新授权表,让初始化后的设定立即生效)
 ... Success!

Cleaning up...

All done!  If you've completed all of the above steps, your MariaDB
installation should now be secure.

Thanks for using MariaDB!

 在众多生产环境的实践中,站库分离技术(即将网站与数据库部署于不同的服务器)被广泛应用以确保系统的高可用性和安全性。当需要为root管理员提供远程访问数据库的权限时,我们需要在初始化过程中制定相应的策略,以允许root管理员从远程地址进行连接。此外,为了保障数据库服务的安全,还需配置防火墙规则,确保其对数据库服务程序(如MySQL,默认占用3306端口)的访问请求进行放行。在防火墙策略中,这类服务通常被统一标识为“mysql”。

[root@localhost 桌面]# firewall-config
在这里插入图片描述
首次登录MariaDB数据库。为了管理数据库,我们将使用mysql命令。在这个命令中,-u参数用于指定以root管理员的身份进行登录,-p用来验证该用户在数据库中的密码值,以确保登录的安全性。

[root@localhost 桌面]# mysql -u root -p
Enter password: 输入刚刚设置的密码
Welcome to the MariaDB monitor.  Commands end with ; or \g.
Your MariaDB connection id is 10
Server version: 5.5.35-MariaDB MariaDB Server

Copyright (c) 2000, 2013, Oracle, Monty Program Ab and others.

Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.

MariaDB [(none)]> SHOW databases;                 //查看数据库管理系统中当前都有哪些数据库
+--------------------+
| Database           |
+--------------------+
| information_schema |
| mysql              |
| performance_schema |
+--------------------+
3 rows in set (0.00 sec)
MariaDB [(none)]> SET password = PASSWORD('hnswjj');    //使用数据库命令将root管理员在数据库管理系统中的密码值修改为hnswjj
Query OK, 0 rows affected (0.00 sec)

MariaDB [(none)]> exit
Bye
使用原密码redhat尝试登陆,登陆失败。
[root@localhost 桌面]# mysql -u root -p
Enter password: 
ERROR 1045 (28000): Access denied for user 'root'@'localhost' (using password: YES)
使用新密码hnswjj尝试登陆,登陆成功,创建用户student,admin,jack;
[root@localhost 桌面]# mysql -u root -p
Enter password: 
Welcome to the MariaDB monitor.  Commands end with ; or \g.
Your MariaDB connection id is 13
Server version: 5.5.35-MariaDB MariaDB Server

Copyright (c) 2000, 2013, Oracle, Monty Program Ab and others.

Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.

MariaDB [(none)]>  CREATE USER student@localhost IDENTIFIED BY 'redhat';
Query OK, 0 rows affected (0.01 sec)

MariaDB [(none)]>  CREATE USER admin@localhost IDENTIFIED BY 'redhat';
Query OK, 0 rows affected (0.00 sec)

MariaDB [(none)]>  CREATE USER jack@localhost IDENTIFIED BY 'redhat';
Query OK, 0 rows affected (0.00 sec)

MariaDB [(none)]> use mysql;
Reading table information for completion of table and column names
You can turn off this feature to get a quicker startup with -A

Database changed
MariaDB [mysql]> SELECT HOST,USER,PASSWORD FROM user WHERE USER="student"MariaDB [mysql]> SELECT HOST,USER,PASSWORD FROM user WHERE USER="student";
+-----------+---------+-------------------------------------------+
| HOST      | USER    | PASSWORD                                  |
+-----------+---------+-------------------------------------------+
| localhost | student | *55D9962586BE75F4B7D421E6655973DB07D6869F |
+-----------+---------+-------------------------------------------+
1 row in set (0.00 sec)

MariaDB [mysql]> SELECT HOST,USER,PASSWORD FROM user WHERE USER="admin";
+-----------+-------+-------------------------------------------+
| HOST      | USER  | PASSWORD                                  |
+-----------+-------+-------------------------------------------+
| localhost | admin | *84BB5DF4823DA319BBF86C99624479A198E6EEE9 |
+-----------+-------+-------------------------------------------+
1 row in set (0.00 sec)

MariaDB [mysql]> SELECT HOST,USER,PASSWORD FROM user WHERE USER="jack";
+-----------+------+-------------------------------------------+
| HOST      | USER | PASSWORD                                  |
+-----------+------+-------------------------------------------+
| localhost | jack | *84BB5DF4823DA319BBF86C99624479A198E6EEE9 |
+-----------+------+-------------------------------------------+
1 row in set (0.00 sec)
MariaDB [mysql]>  SHOW GRANTS FOR student@localhost;
+----------------------------------------------------------------------------------------------------------------+
| Grants for student@localhost                                                                                   |
+----------------------------------------------------------------------------------------------------------------+
| GRANT USAGE ON *.* TO 'student'@'localhost' IDENTIFIED BY PASSWORD '*55D9962586BE75F4B7D421E6655973DB07D6869F' |
+----------------------------------------------------------------------------------------------------------------+
1 row in set (0.00 sec)

查看student用户权限,并针对mysql数据库中的user表单向用户luke授予查询、更新、删除以及插入等权限;

MariaDB [mysql]> GRANT SELECT,UPDATE,DELETE,INSERT ON mysql.user TO student@localhost;
Query OK, 0 rows affected (0.00 sec)

MariaDB [mysql]>  SHOW GRANTS FOR student@localhost;
+----------------------------------------------------------------------------------------------------------------+
| Grants for student@localhost                                                                                   |
+----------------------------------------------------------------------------------------------------------------+
| GRANT USAGE ON *.* TO 'student'@'localhost' IDENTIFIED BY PASSWORD '*55D9962586BE75F4B7D421E6655973DB07D6869F' |
| GRANT SELECT, INSERT, UPDATE, DELETE ON `mysql`.`user` TO 'student'@'localhost'                                |
+----------------------------------------------------------------------------------------------------------------+
2 rows in set (0.00 sec)

MariaDB [mysql]> exit;

登录数据库,创建hnswjjxy数据库并创建表单mybook

MariaDB [(none)]>  CREATE DATABASE hnswjjxy;
Query OK, 1 row affected (0.001 sec)

MariaDB [(none)]>  SHOW databases;
+--------------------+
| Database           |
+--------------------+
| information_schema |
| hnswjjxy        |
| mysql              |
| performance_schema |
+--------------------+
4 rows in set (0.001 sec)
MariaDB [(none)]> use hnswjjxy;
Database changed
MariaDB [hnswjjxy]> CREATE TABLE mybook (name char(15),price int,pages int);
Query OK, 0 rows affected (0.009 sec)
MariaDB [hnswjjxy]> DESCRIBE mybook;
+-------+----------+------+-----+---------+-------+
| Field | Type     | Null | Key | Default | Extra |
+-------+----------+------+-----+---------+-------+
| name  | char(15) | YES  |     | NULL    |       |
| price | int(11)  | YES  |     | NULL    |       |
| pages | int(11)  | YES  |     | NULL    |       |
+-------+----------+------+-----+---------+-------+
3 rows in set (0.002 sec)

mysqldump命令用于备份数据库数据,格式为“mysqldump [参数] [数据库名称]”。其中参数与mysql命令大致相同,-u参数用于定义登录数据库的用户名称,-p参数表示密码提示符。下面将hnswjjxy数据库中的内容导出为一个文件,并保存到root管理员的家目录中:

[root@localhost 桌面]# mysqldump -u root -p hnswjjxy > /root/hnswjjxy.dump
Enter password: 
[root@localhost 桌面]# cd /root/
[root@localhost ~]# ls
anaconda-ks.cfg  hnswjjxy.dump  initial-setup-ks.cfg  公共  模板  视频  图片  文档  下载  音乐  桌面

然后进入MariaDB数据库管理系统,彻底删除hnswjjxy数据库,这样mybook数据表单也将被彻底删除。

[root@localhost ~]#  mysql -u root -p
Enter password: 
Welcome to the MariaDB monitor.  Commands end with ; or \g.
Your MariaDB connection id is 17
Server version: 5.5.35-MariaDB MariaDB Server

Copyright (c) 2000, 2013, Oracle, Monty Program Ab and others.

Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.

MariaDB [(none)]> DROP DATABASE hnswjjxy;
Query OK, 1 row affected (0.00 sec)

MariaDB [(none)]> SHOW databases;
+--------------------+
| Database           |
+--------------------+
| information_schema |
| mysql              |
| performance_schema |
+--------------------+
3 rows in set (0.00 sec)

然后重新建立linuxprobe数据库,可以看到没有表单:

MariaDB [(none)]>  CREATE DATABASE hnswjjxy;
Query OK, 1 row affected (0.00 sec)

MariaDB [(none)]> use hnswjjxy;
Database changed
MariaDB [hnswjjxy]> DESCRIBE mybook;
ERROR 1146 (42S02): Table 'hnswjjxy.mybook' doesn't exist
MariaDB [hnswjjxy]> exit;

使用输入重定向符把刚刚备份的数据库文件导入到mysql命令中,然后执行该命令。接下来登录MariaDB数据库,就又能看到linuxprobe数据库以及mybook数据表单了。数据库恢复成功!

[root@localhost ~]# mysql -u root -p hnswjjxy < /root/hnswjjxy.dump 
Enter password: 
[root@localhost ~]#  mysql -u root -p
Enter password: 
Welcome to the MariaDB monitor.  Commands end with ; or \g.
Your MariaDB connection id is 19
Server version: 5.5.35-MariaDB MariaDB Server

Copyright (c) 2000, 2013, Oracle, Monty Program Ab and others.

Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.

MariaDB [(none)]> SHOW databases;
+--------------------+
| Database           |
+--------------------+
| information_schema |
| hnswjjxy           |
| mysql              |
| performance_schema |
+--------------------+
4 rows in set (0.00 sec)

MariaDB [(none)]> use hnswjjxy;
Reading table information for completion of table and column names
You can turn off this feature to get a quicker startup with -A

Database changed

MariaDB [hnswjjxy]> DESCRIBE mybook;
+-------+----------+------+-----+---------+-------+
| Field | Type     | Null | Key | Default | Extra |
+-------+----------+------+-----+---------+-------+
| name  | char(15) | YES  |     | NULL    |       |
| price | int(11)  | YES  |     | NULL    |       |
| pages | int(11)  | YES  |     | NULL    |       |
+-------+----------+------+-----+---------+-------+
3 rows in set (0.00 sec)

MariaDB [hnswjjxy]>

远程控制服务ssh配置

服务器

[root@localhost ~]# systemctl status sshd
sshd.service - OpenSSH server daemon
   Loaded: loaded (/usr/lib/systemd/system/sshd.service; enabled)
   Active: active (running) since 四 2024-05-09 14:10:55 CST; 49min ago
 Main PID: 1742 (sshd)
   CGroup: /system.slice/sshd.service
           └─1742 /usr/sbin/sshd -D

509 14:10:55 localhost.localdomain systemd[1]: Started OpenSSH server daemon.
509 14:10:55 localhost.localdomain sshd[1742]: Server listening on 0.0.0.0 port 22.
509 14:10:55 localhost.localdomain sshd[1742]: Server listening on :: port 22.
[root@localhost ~]# systemctl enable sshd
[root@localhost ~]# systemctl list-unit-files | grep ssh
anaconda-sshd.service                       static  
sshd-keygen.service                         static  
sshd.service                                enabled 
sshd@.service                               static  
sshd.socket                                 disabled
[root@localhost ~]# ifconfig 
eno16777736: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 192.168.13.131  netmask 255.255.255.0  broadcast 192.168.13.255
        inet6 fe80::20c:29ff:feb8:5c2f  prefixlen 64  scopeid 0x20<link>
        ether 00:0c:29:b8:5c:2f  txqueuelen 1000  (Ethernet)
        RX packets 632  bytes 46003 (44.9 KiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 163  bytes 16158 (15.7 KiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

lo: flags=73<UP,LOOPBACK,RUNNING>  mtu 65536
        inet 127.0.0.1  netmask 255.0.0.0
        inet6 ::1  prefixlen 128  scopeid 0x10<host>
        loop  txqueuelen 0  (Local Loopback)
        RX packets 6  bytes 560 (560.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 6  bytes 560 (560.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

客户端

[root@localhost 桌面]# ifconfig 
eno16777736: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 192.168.13.132  netmask 255.255.255.0  broadcast 192.168.13.255
        inet6 fe80::20c:29ff:fedd:7c41  prefixlen 64  scopeid 0x20<link>
        ether 00:0c:29:dd:7c:41  txqueuelen 1000  (Ethernet)
        RX packets 695  bytes 48300 (47.1 KiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 184  bytes 17871 (17.4 KiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

lo: flags=73<UP,LOOPBACK,RUNNING>  mtu 65536
        inet 127.0.0.1  netmask 255.0.0.0
        inet6 ::1  prefixlen 128  scopeid 0x10<host>
        loop  txqueuelen 0  (Local Loopback)
        RX packets 6  bytes 560 (560.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 6  bytes 560 (560.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

[root@localhost 桌面]# ssh 192.168.13.131
The authenticity of host '192.168.13.131 (192.168.13.131)' can't be established.
ECDSA key fingerprint is 01:e1:e1:a1:fe:89:18:b6:3d:ba:d4:a3:19:f3:1a:f9.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added '192.168.13.131' (ECDSA) to the list of known hosts.
root@192.168.13.131's password: 
Last login: Thu May  9 14:11:07 2024
[root@localhost ~]# ifconfig           //注:此时已远程登陆至服务器,故ifconfig命令看到的是服务器ip.
eno16777736: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 192.168.13.131  netmask 255.255.255.0  broadcast 192.168.13.255
        inet6 fe80::20c:29ff:feb8:5c2f  prefixlen 64  scopeid 0x20<link>
        ether 00:0c:29:b8:5c:2f  txqueuelen 1000  (Ethernet)
        RX packets 734  bytes 55822 (54.5 KiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 195  bytes 20942 (20.4 KiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

lo: flags=73<UP,LOOPBACK,RUNNING>  mtu 65536
        inet 127.0.0.1  netmask 255.0.0.0
        inet6 ::1  prefixlen 128  scopeid 0x10<host>
        loop  txqueuelen 0  (Local Loopback)
        RX packets 6  bytes 560 (560.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 6  bytes 560 (560.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
[root@localhost ~]# exit
登出
Connection to 192.168.13.131 closed.

打开服务器sshd服务配置文件,将第48行的参数设置为禁止root管理员远程登录;

[root@localhost ~]# vim /etc/ssh/sshd_config 
……
45 # Authentication:
 46 
 47 #LoginGraceTime 2m
 48 PermitRootLogin no
 49 #StrictModes yes
 50 #MaxAuthTries 6
 51 #MaxSessions 10
 52 
……
[root@localhost ~]# systemctl restart sshd.service

使用客户端远程登陆,提示权限拒绝;
[root@localhost 桌面]# ssh 192.168.13.131
root@192.168.13.131’s password:
Permission denied, please try again.

重新开启root管理员远程登录权限;

[root@localhost ~]# vim /etc/ssh/sshd_config 
……
45 # Authentication:
 46 
 47 #LoginGraceTime 2m
 48 PermitRootLogin yes
 49 #StrictModes yes
 50 #MaxAuthTries 6
 51 #MaxSessions 10
 52 
……
[root@localhost ~]# systemctl restart sshd.service

使用客户端远程登陆,提示登陆成功;
[root@localhost 桌面]# ssh 192.168.13.131
root@192.168.13.131’s password:
Last failed login: Thu May 9 15:17:36 CST 2024 from 192.168.13.132 on ssh:notty
There were 2 failed login attempts since the last successful login.
Last login: Thu May 9 15:16:30 2024 from 192.168.13.132
[root@localhost ~]# exit
登出
Connection to 192.168.13.131 closed.
使用客户端远程传输文件至服务器的/home目录
[root@localhost 桌面]# cd /opt
[root@localhost opt]# scp /opt/hnsw.txt 192.168.13.131:/home
root@192.168.13.131’s password:
hnsw.txt 100% 28 0.0KB/s 00:00
在服务器中查看传输文件内容:
[root@localhost ~]# cd /home/
[root@localhost home]# ls
hnsw.txt student
[root@localhost home]# cat hnsw.txt
welcome to redhat classroom
[root@localhost home]# cd /
[root@localhost /]# ls
bin boot dev etc home lib lib64 media mnt opt proc root run sbin srv sys tmp usr var
[root@localhost /]# mv home .home
[root@localhost /]# ls
bin boot dev etc lib lib64 media mnt opt proc root run sbin srv sys tmp usr var
[root@localhost /]# ls -a
. … bin boot dev etc .home lib lib64 media mnt opt proc root run sbin srv sys tmp usr var

使用客户端远程登录服务器,删除文件hnsw.txt,创建文件abc.txt
[root@localhost opt]# ssh 192.168.13.131
root@192.168.13.131’s password:
Last login: Thu May 9 15:20:03 2024 from 192.168.13.132
[root@localhost ~]# cd /.home/
[root@localhost .home]# ls
hnsw.txt student
[root@localhost .home]# cat hnsw.txt
welcome to redhat classroom
[root@localhost .home]# rm hnsw.txt
rm:是否删除普通文件 “hnsw.txt”?y
[root@localhost .home]# touch adc.txt
[root@localhost .home]# ls
adc.txt student
[root@localhost .home]#

贰壹贰叁零
关注
  • 25
    点赞
  • 12
    收藏
    觉得还不错? 一键收藏
  • 2
    评论
远程维护数据库
qq_36963043的博客
07-01 250
远程维护数据库 4.1 问题 本例要求学会通过MySQL-Front图形软件远程维护MariaDB数据库服务器系统,完成下列任务: 1)在MariaDB服务端授权管理用户 允许root从192.168.10.0/24网段访问本机,密码为 pwd@123 2)从Win客户机远程管理MariaDB服务器 安装MySQL-Front管理软件 运行MySQL-Front程序,远程连接MariaDB服务器 查看studb库stuinfo表的数据内容 备份studb库 4.2 步骤 实现此案例需要按照如下步骤进行。 步
计算机安全(远程访问及控制)
weixin_48190892的博客
08-24 564
远程控制及控制1.配置OpenSSH服务端1.1 服务监听1.2 用户登录控制1.3 登录验证方式2.使用SSH客户端程序2.1 ssh命令2.2 scp命令2.3 sttp命令3.构建密钥对验证的SSH体系4.设置访问控制策略 1.配置OpenSSH服务端 SSH(Secure Shell)协议 是一种安全的通道协议 对通信数据进行了加密处理,用于远程管理 服务名称:sshd 服务端主程序: /user/sbin/sshd 服务端配置文件:/etc/ssh/sshd_config 1.1 服务监听 #
保障MySQL安全的14个最佳方法
明明
02-13 1094
MySQL数据库一贯以高性能、高可性和易用性著称,它已经成为世界上最流行的开源数据库。大量的个人、WEB开发者、大型公司等都在其网站、关键系统、软件包中广泛使用MySQL数据库。   通常,许多企业在部署一种产品时,安全性常常得不到应有的重视。企业最关心的是使其可以尽快地运行,企业由此也可以尽快赢利。   但有的企业在安装MySQL时用的是默认选项,由此造成其数据不安全,且服务器也面临
Mysql数据库安全和管理 远程连接用户授权
热门推荐
weixin_45185267的博客
06-15 1万+
语法 数据库备份 备份命令格式 恢复命令格式 MySQL远程连接 添加用户和授权 权限列表 示例
如何让远程访问Mysql更安全!
u014389734的博客
02-22 4826
线上业务为了保证数据安全,一般只允许本地或者内网访问MySQL。但一些特殊情况下,需要通过外网访问MySQL。此时为了保证权限最小化开放,首先要做两方面措施:一方面需要配置防火墙白名单iptables -A INPUT -s 1.2.3.4 -p tcp -m tcp –dport 3306 -j ACCEPT另一方面创建MySQL用户时限制访问IPmysql&gt; CREATE USER ‘t...
MySQL数据库:数据库安全与权限管理
最新发布
07-11
### MySQL数据库:数据库安全与权限管理 #### 一、理解数据库安全的重要性 在当前高度数字化的时代背景下,数据作为企业的核心资产之一,其价值不言而喻。因此,确保数据库的安全至关重要,因为它直接关系到数据的...
利用C#远程存取Access数据库
10-30
此外,为了提高性能和安全性,通常建议将Access数据库迁移到更强大的数据库管理系统,如SQL Server,特别是当数据量大或者需要处理大量并发请求时。 总的来说,通过C#和.NET的远程处理功能,我们可以构建一个允许...
数据库与数据安全数据库与数据安全.ppt
06-05
本章主要围绕数据库安全的概念、特性、保护措施、数据完整性、备份与恢复以及数据容灾等方面展开。 首先,数据库安全的概念指的是确保数据库不受任何未经授权的访问和修改,这涵盖了系统故障、并发事件、数据错误和...
基于SQL Server的设备远程诊断数据库安全.pdf
09-19
在远程诊断数据库安全防范策略方面,首先强调的是用户认证。用户需要通过指定的通行字和时间日期检查来进行认证,数据库管理系统不应依赖操作系统认证,而应建立自己的认证机制。用户根据权限的不同被划分为三类:...
rt.rar_文本文件 数据库_远程数据库
09-14
在IT领域,数据库和文本文件的处理是常见的任务,特别是在数据传输和信息共享时。这里我们探讨的主题是如何使用VB(Visual Basic)来实现对远程数据库的...在实际项目中,还需要考虑安全性,如加密传输、权限控制等。
指纹锁远程控制系统设计
06-08
综上所述,指纹锁远程控制系统是一种集成了现代信息技术的智能化解决方案,它不仅能够满足不同应用场景下的安全性需求,还能提供便捷的远程管理和维护功能,是未来门禁控制领域的趋势和发展方向。
Oracle数据库安全策略
09-11
Oracle数据库安全策略是确保敏感数据保护和系统稳定运行的关键措施。在Oracle数据库环境中,安全策略主要涉及以下几个方面: 1. **用户角色管理**:通过设置不同的用户组和口令验证,可以防止未经授权的用户访问...
2022年数据库安全管理身份验证机制.pptx
11-03
总的来说,SQL Server通过多种身份验证模式、客户机和服务器安全机制、数据加密以及权限控制,构建了一个多层次、全方位的数据库安全管理体系。在2022年,随着网络安全威胁的增加,理解并正确配置这些安全机制对于...
MySQL数据库远程连接安全问题研究
博客
10-25 983
MySQL默认是使用TCP协议远程连接的 这里面就有一个安全问题,就是查询语句和返回的结果都是明文传输的。
远程数据库过程调用问题解决
sinat_20628079的博客
10-08 405
 ORA-02064: 问题描述:通过数据库链调用远程数据库,如果在远程数据库中存在commit 或者rollback等事务控制语句时,oracle会报上述错误。 解决方法:通过自治事务(PRAGMA AUTONOMOUS_TRANSACTION),在远程数据库过程中开启独立的事务。 ORA-04062: 问题描述:在本地存储过程中调用远程数据库存储过程,当远程数据库过程发生编译操作
MSMQ拒绝访问错误
dianxianchun7534的博客
09-19 415
调用MSMQ的时候出现调用错误,拿出 MSMQTracer 测试 出现"拒绝访问"的错误, 微软的说法是: 当您尝试查看 Mobile Information Server 队列在 Microsoft 消息队列 (MSMQ) 创建的安装 Microsoft Mobile Information Server 后,您将收到以下错误信息: 错误: 访问被拒绝。 出现此问题的原...
默认安全
心想事成
09-07 470
默认安全int __fastcall GetFileSystemDefaultSecurity(int a1, int a2) { int v2; // edi@1 int v3; // esi@2 const wchar_t *v4; // ecx@4 int v5; // ecx@5 int v6; // eax@27 int v7; // eax@27 const
评论 2
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值