sudo ufw enable |
Ativa firewall UFW (Ubuntu). |
|
sudo ufw allow 22 |
Permite porta 22 (SSH). |
|
sudo ufw allow from 192.168.1.0/24 |
Permite rede local. |
|
sudo ufw deny 80 |
Bloqueia porta 80. |
|
sudo ufw status |
Mostra regras ativas. |
|
sudo iptables -L |
Lista regras do iptables. |
|
sudo iptables -A INPUT -p tcp --dport 22 -j ACCEPT |
Permite SSH via iptables. |
|
sudo iptables-save > firewall.rules |
Salva regras. |
|
sudo iptables-restore < firewall.rules |
Restaura regras. |
|
fail2ban-client status sshd |
Verifica proteção SSH. |
|
fail2ban-client status |
Lista todos os jails ativos. |
|
auditctl -w /etc/passwd -p wa |
Monitora acesso ao passwd. |
|
aureport --file |
Relatório de auditoria. |
|
chkrootkit |
Verifica rootkits. |
|
lynis audit system |
Análise de segurança completa. |
|
gpg -c arquivo.txt |
Criptografa com senha. |
|
gpg arquivo.txt.gpg |
Descriptografa. |
|
openssl rand -base64 32 |
Gera senha segura. |
|
ssh-keygen -t ed25519 |
Gera chave SSH moderna. |
|
chmod 600 ~/.ssh/id_ed25519 |
Protege chave privada. |
|
 translate(110, 100)'/%3E%3Cpath fill='%23e2e8f0' d='M75,85 C82.5,85 85,65 85,60 C85,55 80,52.5 75,52.5 C70,52.5 65,55 65,60 C65,65 67.5,85 75,85 Z' transform='scale(0.5) translate(110, 100)'/%3E%3Ccircle fill='%232d3748' cx='70.5' cy='55' r='2' transform='scale(0.5) translate(110, 100)'/%3E%3Ccircle fill='%232d3748' cx='79.5' cy='55' r='2' transform='scale(0.5) translate(110, 100)'/%3E%3Cpath fill='%23f6ad55' d='M75,60 L72.5,62.5 L77.5,62.5 Z' transform='scale(0.5) translate(110, 100)'/%3E%3Cpath fill='%234299e1' d='M65,55 L85,55 L82.5,52.5 L67.5,52.5 Z' transform='scale(0.5) translate(110, 100)'/%3E%3Cpath fill='%234299e1' d='M67.5,52.5 C65,50 67.5,47.5 75,47.5 C82.5,47.5 85,50 82.5,52.5 Z' transform='scale(0.5) translate(110, 100)'/%3E%3C/svg%3E){kind=small}
Piolinux