{"id":2993,"date":"2026-04-25T09:36:25","date_gmt":"2026-04-25T09:36:25","guid":{"rendered":"https:\/\/maram.iq\/blogs\/?p=2993"},"modified":"2026-04-27T11:13:45","modified_gmt":"2026-04-27T08:13:45","slug":"%d8%aa%d8%a3%d9%85%d9%8a%d9%86-%d8%b3%d9%8a%d8%b1%d9%81%d8%b1-linux","status":"publish","type":"post","link":"https:\/\/maram.iq\/blogs\/%d8%aa%d8%a3%d9%85%d9%8a%d9%86-%d8%b3%d9%8a%d8%b1%d9%81%d8%b1-linux\/","title":{"rendered":"\u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631 Linux \u0641\u064a 15 \u062f\u0642\u064a\u0642\u0629: 10 \u062e\u0637\u0648\u0627\u062a \u0639\u0645\u0644\u064a\u0629 \u0644\u062d\u0645\u0627\u064a\u0629 VPS 2026"},"content":{"rendered":"\n<div style=\"background:linear-gradient(135deg,#0f172a,#4a1d96);color:#fff;padding:2.5rem;border-radius:16px;margin-bottom:2rem;text-align:center\">\n<p style=\"font-size:3rem;margin:0 0 .5rem\">\ud83d\udee1\ufe0f<\/p>\n<h2 style=\"color:#fff!important;font-size:1.5rem;margin:0 0 .5rem\" id=\"section-1\">\u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631 Linux \u0641\u064a 15 \u062f\u0642\u064a\u0642\u0629: 10 \u062e\u0637\u0648\u0627\u062a \u0639\u0645\u0644\u064a\u0629 \u0644\u062d\u0645\u0627\u064a\u0629 VPS<\/h2>\n<p style=\"margin:0\">\u062f\u0644\u064a\u0644 \u0639\u0645\u0644\u064a \u0633\u0631\u064a\u0639 \u0644\u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631\u0643 \u0641\u0648\u0631 \u062a\u0634\u063a\u064a\u0644\u0647 \u0648\u062d\u0645\u0627\u064a\u062a\u0647 \u0645\u0646 \u0627\u0644\u0627\u062e\u062a\u0631\u0627\u0642<\/p>\n<\/div>\n\n\n\n<div class=\"table-of-contents\" style=\"background:#f8fafc;border:1px solid #e2e8f0;border-radius:12px;padding:1.5rem;margin:1.5rem 0;\"><p style=\"font-weight:700;font-size:1.05rem;margin-bottom:.75rem;\">\u0645\u062d\u062a\u0648\u064a\u0627\u062a \u0627\u0644\u0645\u0642\u0627\u0644<\/p><ul style=\"list-style:none;padding:0;margin:0;\"><li style=\"padding:.25rem 0;\"><a href=\"#section-2\" style=\"color:#4f46e5;text-decoration:none;\">&#8592; \u0644\u0645\u0627\u0630\u0627 \u062a\u0623\u0645\u064a\u0646 \u0627\u0644\u0633\u064a\u0631\u0641\u0631 \u0636\u0631\u0648\u0631\u064a<\/a><\/li><li style=\"padding:.25rem 0;\"><a href=\"#section-3\" style=\"color:#4f46e5;text-decoration:none;\">&#8592; \u062a\u062d\u062f\u064a\u062b \u0627\u0644\u0646\u0638\u0627\u0645<\/a><\/li><li style=\"padding:.25rem 0;\"><a href=\"#section-4\" style=\"color:#4f46e5;text-decoration:none;\">&#8592; \u062a\u063a\u064a\u064a\u0631 \u0645\u0646\u0641\u0630 SSH<\/a><\/li><li style=\"padding:.25rem 0;\"><a href=\"#section-5\" style=\"color:#4f46e5;text-decoration:none;\">&#8592; \u062a\u0639\u0637\u064a\u0644 root login<\/a><\/li><li style=\"padding:.25rem 0;\"><a href=\"#section-6\" style=\"color:#4f46e5;text-decoration:none;\">&#8592; \u0625\u0639\u062f\u0627\u062f \u0645\u0641\u0627\u062a\u064a\u062d SSH<\/a><\/li><li style=\"padding:.25rem 0;\"><a href=\"#section-7\" style=\"color:#4f46e5;text-decoration:none;\">&#8592; \u062a\u062b\u0628\u064a\u062a fail2ban<\/a><\/li><li style=\"padding:.25rem 0;\"><a href=\"#section-8\" style=\"color:#4f46e5;text-decoration:none;\">&#8592; \u0625\u0639\u062f\u0627\u062f \u0627\u0644\u062c\u062f\u0627\u0631 \u0627\u0644\u0646\u0627\u0631\u064a UFW<\/a><\/li><li style=\"padding:.25rem 0;\"><a href=\"#section-9\" style=\"color:#4f46e5;text-decoration:none;\">&#8592; \u062a\u0639\u0637\u064a\u0644 \u0627\u0644\u062e\u062f\u0645\u0627\u062a \u063a\u064a\u0631 \u0627\u0644\u0645\u0633\u062a\u062e\u062f\u0645\u0629<\/a><\/li><li style=\"padding:.25rem 0;\"><a href=\"#section-10\" style=\"color:#4f46e5;text-decoration:none;\">&#8592; \u0625\u0639\u062f\u0627\u062f \u0627\u0644\u062a\u0646\u0628\u064a\u0647\u0627\u062a<\/a><\/li><li style=\"padding:.25rem 0;\"><a href=\"#section-11\" style=\"color:#4f46e5;text-decoration:none;\">&#8592; \u062a\u0641\u0639\u064a\u0644 \u0627\u0644\u062a\u062d\u062f\u064a\u062b\u0627\u062a \u0627\u0644\u062a\u0644\u0642\u0627\u0626\u064a\u0629<\/a><\/li><li style=\"padding:.25rem 0;\"><a href=\"#section-12\" style=\"color:#4f46e5;text-decoration:none;\">&#8592; \u0645\u0631\u0627\u0642\u0628\u0629 \u0627\u0644\u0633\u062c\u0644\u0627\u062a<\/a><\/li><li style=\"padding:.25rem 0;\"><a href=\"#section-13\" style=\"color:#4f46e5;text-decoration:none;\">&#8592; \u0627\u0644\u062e\u0644\u0627\u0635\u0629<\/a><\/li><li style=\"padding:.25rem 0;\"><a href=\"#section-14\" style=\"color:#4f46e5;text-decoration:none;\">&#8592; \u0627\u0644\u0623\u0633\u0626\u0644\u0629 \u0627\u0644\u0634\u0627\u0626\u0639\u0629<\/a><\/li><\/ul><\/div>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"section-2\">\u0644\u0645\u0627\u0630\u0627 \u062a\u0623\u0645\u064a\u0646 \u0627\u0644\u0633\u064a\u0631\u0641\u0631 \u0636\u0631\u0648\u0631\u064a<\/h2>\n\n\n\n<p>\u0628\u0645\u062c\u0631\u062f \u062a\u0634\u063a\u064a\u0644 <a href=\"https:\/\/maram.iq\/blogs\/maram-host-plans-comparison\/\">\u0633\u064a\u0631\u0641\u0631 VPS<\/a> \u062c\u062f\u064a\u062f \u0648\u0631\u0628\u0637\u0647 \u0628\u0627\u0644\u0625\u0646\u062a\u0631\u0646\u062a\u060c \u062a\u0628\u062f\u0623 \u0645\u062d\u0627\u0648\u0644\u0627\u062a \u0627\u0644\u0627\u062e\u062a\u0631\u0627\u0642 \u0627\u0644\u0622\u0644\u064a\u0629 \u062e\u0644\u0627\u0644 \u062f\u0642\u0627\u0626\u0642. \u0627\u0644\u0631\u0648\u0628\u0648\u062a\u0627\u062a \u062a\u0641\u062d\u0635 \u0645\u0644\u0627\u064a\u064a\u0646 \u0639\u0646\u0627\u0648\u064a\u0646 IP \u064a\u0648\u0645\u064a\u0627\u064b \u0628\u062d\u062b\u0627\u064b \u0639\u0646 \u0633\u064a\u0631\u0641\u0631\u0627\u062a \u063a\u064a\u0631 \u0645\u0624\u0645\u0651\u0646\u0629. \u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631 Linux \u0644\u064a\u0633 \u0631\u0641\u0627\u0647\u064a\u0629 \u0628\u0644 \u0636\u0631\u0648\u0631\u0629 \u062d\u062a\u0645\u064a\u0629 \u0644\u062d\u0645\u0627\u064a\u0629 \u0628\u064a\u0627\u0646\u0627\u062a\u0643 \u0648\u0628\u064a\u0627\u0646\u0627\u062a \u0639\u0645\u0644\u0627\u0626\u0643.<\/p>\n\n\n\n<p>\u0648\u0641\u0642\u0627\u064b \u0644\u062a\u0642\u0631\u064a\u0631 <a href=\"https:\/\/www.verizon.com\/business\/resources\/reports\/dbir\/\" target=\"_blank\" rel=\"noopener\">Verizon Data Breach Investigations<\/a>\u060c \u0641\u0625\u0646 \u0623\u0643\u062b\u0631 \u0645\u0646 80% \u0645\u0646 \u0627\u0644\u0627\u062e\u062a\u0631\u0627\u0642\u0627\u062a \u062a\u0633\u062a\u063a\u0644 \u0643\u0644\u0645\u0627\u062a \u0645\u0631\u0648\u0631 \u0636\u0639\u064a\u0641\u0629 \u0623\u0648 \u0625\u0639\u062f\u0627\u062f\u0627\u062a \u0627\u0641\u062a\u0631\u0627\u0636\u064a\u0629. \u0647\u0630\u0627 \u064a\u0639\u0646\u064a \u0623\u0646 \u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631 Linux \u0627\u0644\u0623\u0633\u0627\u0633\u064a \u064a\u0645\u0646\u0639 \u0627\u0644\u063a\u0627\u0644\u0628\u064a\u0629 \u0627\u0644\u0639\u0638\u0645\u0649 \u0645\u0646 \u0627\u0644\u0647\u062c\u0645\u0627\u062a.<\/p>\n\n\n\n<p>\u0641\u064a \u0647\u0630\u0627 \u0627\u0644\u062f\u0644\u064a\u0644\u060c \u0633\u0646\u063a\u0637\u064a 10 \u062e\u0637\u0648\u0627\u062a \u0639\u0645\u0644\u064a\u0629 \u064a\u0645\u0643\u0646\u0643 \u062a\u0646\u0641\u064a\u0630\u0647\u0627 \u0641\u064a 15 \u062f\u0642\u064a\u0642\u0629 \u0641\u0642\u0637 \u0644\u0631\u0641\u0639 \u0645\u0633\u062a\u0648\u0649 \u0623\u0645\u0627\u0646 \u0633\u064a\u0631\u0641\u0631\u0643 \u0628\u0634\u0643\u0644 \u0643\u0628\u064a\u0631. \u0644\u0646\u0628\u062f\u0623.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"section-3\">\u0627\u0644\u062e\u0637\u0648\u0629 1: \u062a\u062d\u062f\u064a\u062b \u0627\u0644\u0646\u0638\u0627\u0645<\/h2>\n\n\n\n<p>\u0623\u0648\u0644 \u062e\u0637\u0648\u0629 \u0641\u064a \u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631 Linux \u0647\u064a \u0627\u0644\u062a\u0623\u0643\u062f \u0645\u0646 \u0623\u0646 \u062c\u0645\u064a\u0639 \u0627\u0644\u062d\u0632\u0645 \u0648\u0627\u0644\u0628\u0631\u0627\u0645\u062c \u0645\u062d\u062f\u0651\u062b\u0629 \u0644\u0622\u062e\u0631 \u0625\u0635\u062f\u0627\u0631. \u0627\u0644\u062a\u062d\u062f\u064a\u062b\u0627\u062a \u0627\u0644\u0623\u0645\u0646\u064a\u0629 \u062a\u0633\u062f \u062b\u063a\u0631\u0627\u062a \u0645\u0639\u0631\u0648\u0641\u0629 \u064a\u0633\u062a\u063a\u0644\u0647\u0627 \u0627\u0644\u0645\u0647\u0627\u062c\u0645\u0648\u0646.<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code># \u0644\u0640 Ubuntu\/Debian\nsudo apt update &amp;&amp; sudo apt upgrade -y\n\n# \u0644\u0640 CentOS\/RHEL\/AlmaLinux\nsudo dnf update -y\n\n# \u0627\u0644\u062a\u062d\u0642\u0642 \u0645\u0646 \u0648\u062c\u0648\u062f \u062a\u062d\u062f\u064a\u062b\u0627\u062a \u0623\u0645\u0646\u064a\u0629 \u0641\u0642\u0637\nsudo apt list --upgradable 2&gt;\/dev\/null | grep -i security<\/code><\/pre>\n\n\n\n<p>\u0642\u0627\u0639\u062f\u0629 \u0645\u0647\u0645\u0629: \u062d\u062f\u0651\u062b \u0627\u0644\u0646\u0638\u0627\u0645 \u0641\u0648\u0631 \u062a\u0634\u063a\u064a\u0644 \u0627\u0644\u0633\u064a\u0631\u0641\u0631 \u0648\u0642\u0628\u0644 \u062a\u062b\u0628\u064a\u062a \u0623\u064a \u062a\u0637\u0628\u064a\u0642. \u0647\u0630\u0627 \u064a\u0645\u0646\u0639 \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0627\u062a \u0645\u0639\u0631\u0648\u0641\u0629 \u0641\u064a \u0627\u0644\u062d\u0632\u0645 \u0627\u0644\u0642\u062f\u064a\u0645\u0629.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"section-4\">\u0627\u0644\u062e\u0637\u0648\u0629 2: \u062a\u063a\u064a\u064a\u0631 \u0645\u0646\u0641\u0630 SSH<\/h2>\n\n\n\n<p>\u0627\u0644\u0645\u0646\u0641\u0630 \u0627\u0644\u0627\u0641\u062a\u0631\u0627\u0636\u064a \u0644\u0640 SSH \u0647\u0648 22\u060c \u0648\u0647\u0648 \u0623\u0648\u0644 \u0645\u0627 \u062a\u0633\u062a\u0647\u062f\u0641\u0647 \u0627\u0644\u0631\u0648\u0628\u0648\u062a\u0627\u062a. \u062a\u063a\u064a\u064a\u0631 \u0627\u0644\u0645\u0646\u0641\u0630 \u0644\u0627 \u064a\u0648\u0642\u0641 \u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u0627\u0644\u0645\u062d\u062a\u0631\u0641\u060c \u0644\u0643\u0646\u0647 \u064a\u0642\u0644\u0644 \u0645\u062d\u0627\u0648\u0644\u0627\u062a \u0627\u0644\u0627\u062e\u062a\u0631\u0627\u0642 \u0627\u0644\u0622\u0644\u064a\u0629 \u0628\u0646\u0633\u0628\u0629 \u062a\u0632\u064a\u062f \u0639\u0646 99%. \u0647\u0630\u0647 \u062e\u0637\u0648\u0629 \u0628\u0633\u064a\u0637\u0629 \u0648\u0641\u0639\u0651\u0627\u0644\u0629 \u0641\u064a \u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631 Linux.<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code># \u062a\u0639\u062f\u064a\u0644 \u0645\u0644\u0641 \u0625\u0639\u062f\u0627\u062f\u0627\u062a SSH\nsudo nano \/etc\/ssh\/sshd_config\n\n# \u0627\u0628\u062d\u062b \u0639\u0646 \u0627\u0644\u0633\u0637\u0631 \u0627\u0644\u062a\u0627\u0644\u064a \u0648\u063a\u064a\u0651\u0631\u0647:\n# Port 22\nPort 2222\n\n# \u0623\u0639\u062f \u062a\u0634\u063a\u064a\u0644 SSH\nsudo systemctl restart sshd<\/code><\/pre>\n\n\n\n<p>\u062a\u0646\u0628\u064a\u0647 \u0645\u0647\u0645: \u0642\u0628\u0644 \u0625\u063a\u0644\u0627\u0642 \u0627\u0644\u062c\u0644\u0633\u0629 \u0627\u0644\u062d\u0627\u0644\u064a\u0629\u060c \u0627\u0641\u062a\u062d \u062c\u0644\u0633\u0629 SSH \u062c\u062f\u064a\u062f\u0629 \u0639\u0644\u0649 \u0627\u0644\u0645\u0646\u0641\u0630 \u0627\u0644\u062c\u062f\u064a\u062f \u0644\u0644\u062a\u0623\u0643\u062f \u0645\u0646 \u0639\u0645\u0644\u0647. \u062e\u0637\u0623 \u0641\u064a \u0647\u0630\u0647 \u0627\u0644\u062e\u0637\u0648\u0629 \u0642\u062f \u064a\u0645\u0646\u0639\u0643 \u0645\u0646 \u0627\u0644\u0648\u0635\u0648\u0644 \u0644\u0644\u0633\u064a\u0631\u0641\u0631.<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code># \u0627\u062a\u0635\u0644 \u0628\u0627\u0644\u0645\u0646\u0641\u0630 \u0627\u0644\u062c\u062f\u064a\u062f \u0644\u0644\u062a\u0623\u0643\u062f\nssh -p 2222 user@your-server-ip<\/code><\/pre>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"section-5\">\u0627\u0644\u062e\u0637\u0648\u0629 3: \u062a\u0639\u0637\u064a\u0644 root login<\/h2>\n\n\n\n<p>\u062a\u0633\u062c\u064a\u0644 \u0627\u0644\u062f\u062e\u0648\u0644 \u0645\u0628\u0627\u0634\u0631\u0629 \u0643\u0640 root \u0639\u0628\u0631 SSH \u064a\u0645\u062b\u0644 \u062e\u0637\u0631\u0627\u064b \u0623\u0645\u0646\u064a\u0627\u064b \u0643\u0628\u064a\u0631\u0627\u064b. \u0625\u0630\u0627 \u062a\u0645\u0643\u0646 \u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u0645\u0646 \u062a\u062e\u0645\u064a\u0646 \u0643\u0644\u0645\u0629 \u0627\u0644\u0645\u0631\u0648\u0631\u060c \u0633\u064a\u062d\u0635\u0644 \u0639\u0644\u0649 \u0635\u0644\u0627\u062d\u064a\u0627\u062a \u0643\u0627\u0645\u0644\u0629 \u0641\u0648\u0631\u0627\u064b. \u062a\u0639\u0637\u064a\u0644 root login \u062e\u0637\u0648\u0629 \u0623\u0633\u0627\u0633\u064a\u0629 \u0641\u064a \u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631 Linux.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">\u0625\u0646\u0634\u0627\u0621 \u0645\u0633\u062a\u062e\u062f\u0645 \u0628\u062f\u064a\u0644 \u0623\u0648\u0644\u0627\u064b<\/h3>\n\n\n\n<pre class=\"wp-block-code\"><code># \u0625\u0646\u0634\u0627\u0621 \u0645\u0633\u062a\u062e\u062f\u0645 \u062c\u062f\u064a\u062f\nsudo adduser admin_user\n\n# \u0645\u0646\u062d\u0647 \u0635\u0644\u0627\u062d\u064a\u0627\u062a sudo\nsudo usermod -aG sudo admin_user\n\n# \u0627\u0644\u062a\u0623\u0643\u062f \u0645\u0646 \u0623\u0646\u0647 \u064a\u0639\u0645\u0644 \u0628\u062a\u0633\u062c\u064a\u0644 \u0627\u0644\u062f\u062e\u0648\u0644 \u0628\u0647 \u0641\u064a \u062c\u0644\u0633\u0629 \u062c\u062f\u064a\u062f\u0629\nsu - admin_user\nsudo whoami  # \u064a\u062c\u0628 \u0623\u0646 \u064a\u064f\u0638\u0647\u0631: root<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\">\u062a\u0639\u0637\u064a\u0644 root login<\/h3>\n\n\n\n<pre class=\"wp-block-code\"><code># \u0641\u064a \u0645\u0644\u0641 \/etc\/ssh\/sshd_config\nPermitRootLogin no\n\n# \u0623\u0639\u062f \u062a\u0634\u063a\u064a\u0644 SSH\nsudo systemctl restart sshd<\/code><\/pre>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"section-6\">\u0627\u0644\u062e\u0637\u0648\u0629 4: \u0625\u0639\u062f\u0627\u062f \u0645\u0641\u0627\u062a\u064a\u062d SSH<\/h2>\n\n\n\n<p>\u0645\u0641\u0627\u062a\u064a\u062d SSH \u0623\u0643\u062b\u0631 \u0623\u0645\u0627\u0646\u0627\u064b \u0628\u0645\u0631\u0627\u062d\u0644 \u0645\u0646 \u0643\u0644\u0645\u0627\u062a \u0627\u0644\u0645\u0631\u0648\u0631. \u0645\u0641\u062a\u0627\u062d SSH \u0628\u0637\u0648\u0644 4096 \u0628\u062a \u064a\u0633\u062a\u062d\u064a\u0644 \u062a\u062e\u0645\u064a\u0646\u0647 \u0639\u0645\u0644\u064a\u0627\u064b. \u0647\u0630\u0647 \u0645\u0646 \u0623\u0647\u0645 \u062e\u0637\u0648\u0627\u062a \u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631 Linux \u0627\u0644\u062a\u064a \u064a\u062c\u0628 \u062a\u0646\u0641\u064a\u0630\u0647\u0627 \u0641\u0648\u0631\u0627\u064b.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">\u0625\u0646\u0634\u0627\u0621 \u0645\u0641\u062a\u0627\u062d SSH \u0639\u0644\u0649 \u062c\u0647\u0627\u0632\u0643 \u0627\u0644\u0645\u062d\u0644\u064a<\/h3>\n\n\n\n<pre class=\"wp-block-code\"><code># \u0625\u0646\u0634\u0627\u0621 \u0645\u0641\u062a\u0627\u062d Ed25519 (\u0627\u0644\u0623\u062d\u062f\u062b \u0648\u0627\u0644\u0623\u0642\u0648\u0649)\nssh-keygen -t ed25519 -C \"your_email@example.com\"\n\n# \u0623\u0648 RSA 4096 \u0628\u062a\nssh-keygen -t rsa -b 4096 -C \"your_email@example.com\"\n\n# \u0646\u0633\u062e \u0627\u0644\u0645\u0641\u062a\u0627\u062d \u0627\u0644\u0639\u0627\u0645 \u0625\u0644\u0649 \u0627\u0644\u0633\u064a\u0631\u0641\u0631\nssh-copy-id -p 2222 admin_user@your-server-ip<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\">\u062a\u0639\u0637\u064a\u0644 \u062a\u0633\u062c\u064a\u0644 \u0627\u0644\u062f\u062e\u0648\u0644 \u0628\u0643\u0644\u0645\u0629 \u0627\u0644\u0645\u0631\u0648\u0631<\/h3>\n\n\n\n<p>\u0628\u0639\u062f \u0627\u0644\u062a\u0623\u0643\u062f \u0645\u0646 \u0639\u0645\u0644 \u0627\u0644\u0645\u0641\u062a\u0627\u062d\u060c \u0639\u0637\u0651\u0644 \u062a\u0633\u062c\u064a\u0644 \u0627\u0644\u062f\u062e\u0648\u0644 \u0628\u0643\u0644\u0645\u0629 \u0627\u0644\u0645\u0631\u0648\u0631:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code># \u0641\u064a \/etc\/ssh\/sshd_config\nPasswordAuthentication no\nPubkeyAuthentication yes\nChallengeResponseAuthentication no\n\nsudo systemctl restart sshd<\/code><\/pre>\n\n\n\n<p>\u0631\u0627\u062c\u0639 <a href=\"https:\/\/www.ssh.com\/academy\/ssh\/keygen\" target=\"_blank\" rel=\"noopener\">\u062f\u0644\u064a\u0644 SSH Academy<\/a> \u0644\u0645\u0632\u064a\u062f \u0645\u0646 \u0627\u0644\u062a\u0641\u0627\u0635\u064a\u0644 \u062d\u0648\u0644 \u0623\u0646\u0648\u0627\u0639 \u0627\u0644\u0645\u0641\u0627\u062a\u064a\u062d \u0648\u0623\u0641\u0636\u0644 \u0627\u0644\u0645\u0645\u0627\u0631\u0633\u0627\u062a.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"section-7\">\u0627\u0644\u062e\u0637\u0648\u0629 5: \u062a\u062b\u0628\u064a\u062a fail2ban<\/h2>\n\n\n\n<p>fail2ban \u064a\u0631\u0627\u0642\u0628 \u0633\u062c\u0644\u0627\u062a \u0627\u0644\u0646\u0638\u0627\u0645 \u0648\u064a\u062d\u0638\u0631 \u0639\u0646\u0627\u0648\u064a\u0646 IP \u0627\u0644\u062a\u064a \u062a\u0641\u0634\u0644 \u0641\u064a \u062a\u0633\u062c\u064a\u0644 \u0627\u0644\u062f\u062e\u0648\u0644 \u0639\u062f\u0629 \u0645\u0631\u0627\u062a. \u0623\u062f\u0627\u0629 \u0623\u0633\u0627\u0633\u064a\u0629 \u0641\u064a \u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631 Linux \u0636\u062f \u0647\u062c\u0645\u0627\u062a \u0627\u0644\u0642\u0648\u0629 \u0627\u0644\u063a\u0627\u0634\u0645\u0629 (Brute Force).<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code># \u0627\u0644\u062a\u062b\u0628\u064a\u062a\nsudo apt install fail2ban -y\n\n# \u0625\u0646\u0634\u0627\u0621 \u0645\u0644\u0641 \u0625\u0639\u062f\u0627\u062f\u0627\u062a \u0645\u062e\u0635\u0635\nsudo cp \/etc\/fail2ban\/jail.conf \/etc\/fail2ban\/jail.local\nsudo nano \/etc\/fail2ban\/jail.local<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\">\u0625\u0639\u062f\u0627\u062f\u0627\u062a fail2ban \u0627\u0644\u0645\u062b\u0627\u0644\u064a\u0629<\/h3>\n\n\n\n<pre class=\"wp-block-code\"><code>&#91;DEFAULT]\nbantime = 3600\nfindtime = 600\nmaxretry = 3\nbanaction = iptables-multiport\n\n&#91;sshd]\nenabled = true\nport = 2222\nfilter = sshd\nlogpath = \/var\/log\/auth.log\nmaxretry = 3\nbantime = 86400<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code># \u062a\u0634\u063a\u064a\u0644 \u0648\u062a\u0641\u0639\u064a\u0644 fail2ban\nsudo systemctl enable fail2ban\nsudo systemctl start fail2ban\n\n# \u0627\u0644\u062a\u062d\u0642\u0642 \u0645\u0646 \u0627\u0644\u062d\u0627\u0644\u0629\nsudo fail2ban-client status sshd\n\n# \u0639\u0631\u0636 \u0639\u0646\u0627\u0648\u064a\u0646 IP \u0627\u0644\u0645\u062d\u0638\u0648\u0631\u0629\nsudo fail2ban-client status sshd | grep \"Banned IP\"<\/code><\/pre>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"section-8\">\u0627\u0644\u062e\u0637\u0648\u0629 6: \u0625\u0639\u062f\u0627\u062f \u0627\u0644\u062c\u062f\u0627\u0631 \u0627\u0644\u0646\u0627\u0631\u064a UFW<\/h2>\n\n\n\n<p>UFW (Uncomplicated Firewall) \u0647\u0648 \u0648\u0627\u062c\u0647\u0629 \u0645\u0628\u0633\u0637\u0629 \u0644\u0625\u062f\u0627\u0631\u0629 iptables. \u064a\u064f\u0639\u062f\u0651 \u0625\u0639\u062f\u0627\u062f \u0627\u0644\u062c\u062f\u0627\u0631 \u0627\u0644\u0646\u0627\u0631\u064a \u0645\u0646 \u0623\u0647\u0645 \u062e\u0637\u0648\u0627\u062a \u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631 Linux \u0644\u0623\u0646\u0647 \u064a\u0645\u0646\u0639 \u0627\u0644\u0648\u0635\u0648\u0644 \u063a\u064a\u0631 \u0627\u0644\u0645\u0635\u0631\u0651\u062d \u0628\u0647 \u0625\u0644\u0649 \u0623\u064a \u0645\u0646\u0641\u0630.<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code># \u062a\u062b\u0628\u064a\u062a UFW (\u0645\u062b\u0628\u062a \u0627\u0641\u062a\u0631\u0627\u0636\u064a\u0627\u064b \u0641\u064a Ubuntu)\nsudo apt install ufw -y\n\n# \u0627\u0644\u0633\u064a\u0627\u0633\u0629 \u0627\u0644\u0627\u0641\u062a\u0631\u0627\u0636\u064a\u0629: \u062d\u0638\u0631 \u0643\u0644 \u0634\u064a\u0621 \u062b\u0645 \u0627\u0644\u0633\u0645\u0627\u062d \u0628\u0645\u0627 \u062a\u062d\u062a\u0627\u062c\u0647\nsudo ufw default deny incoming\nsudo ufw default allow outgoing\n\n# \u0627\u0644\u0633\u0645\u0627\u062d \u0628\u0640 SSH (\u0627\u0644\u0645\u0646\u0641\u0630 \u0627\u0644\u062c\u062f\u064a\u062f)\nsudo ufw allow 2222\/tcp comment 'SSH'\n\n# \u0627\u0644\u0633\u0645\u0627\u062d \u0628\u0640 HTTP \u0648 HTTPS\nsudo ufw allow 80\/tcp comment 'HTTP'\nsudo ufw allow 443\/tcp comment 'HTTPS'\n\n# \u062a\u0641\u0639\u064a\u0644 \u0627\u0644\u062c\u062f\u0627\u0631 \u0627\u0644\u0646\u0627\u0631\u064a\nsudo ufw enable\n\n# \u0627\u0644\u062a\u062d\u0642\u0642 \u0645\u0646 \u0627\u0644\u0642\u0648\u0627\u0639\u062f\nsudo ufw status verbose<\/code><\/pre>\n\n\n\n<p>\u062a\u062d\u0630\u064a\u0631: \u062a\u0623\u0643\u062f \u0645\u0646 \u0625\u0636\u0627\u0641\u0629 \u0642\u0627\u0639\u062f\u0629 SSH \u0642\u0628\u0644 \u062a\u0641\u0639\u064a\u0644 UFW\u060c \u0648\u0625\u0644\u0627 \u0633\u062a\u0641\u0642\u062f \u0627\u0644\u0627\u062a\u0635\u0627\u0644 \u0628\u0627\u0644\u0633\u064a\u0631\u0641\u0631.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">\u0642\u0648\u0627\u0639\u062f \u0625\u0636\u0627\u0641\u064a\u0629 \u062d\u0633\u0628 \u0627\u0644\u062d\u0627\u062c\u0629<\/h3>\n\n\n\n<pre class=\"wp-block-code\"><code># \u0627\u0644\u0633\u0645\u0627\u062d \u0628\u0640 MySQL \u0645\u0646 IP \u0645\u062d\u062f\u062f \u0641\u0642\u0637\nsudo ufw allow from 192.168.1.100 to any port 3306 comment 'MySQL from trusted IP'\n\n# \u0627\u0644\u0633\u0645\u0627\u062d \u0628\u0645\u0646\u0641\u0630 \u0645\u062d\u062f\u062f \u0645\u0624\u0642\u062a\u0627\u064b\nsudo ufw allow 8080\/tcp comment 'Temp testing port'\n\n# \u062d\u0630\u0641 \u0642\u0627\u0639\u062f\u0629\nsudo ufw delete allow 8080\/tcp<\/code><\/pre>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"section-9\">\u0627\u0644\u062e\u0637\u0648\u0629 7: \u062a\u0639\u0637\u064a\u0644 \u0627\u0644\u062e\u062f\u0645\u0627\u062a \u063a\u064a\u0631 \u0627\u0644\u0645\u0633\u062a\u062e\u062f\u0645\u0629<\/h2>\n\n\n\n<p>\u0643\u0644 \u062e\u062f\u0645\u0629 \u062a\u0639\u0645\u0644 \u0639\u0644\u0649 \u0627\u0644\u0633\u064a\u0631\u0641\u0631 \u0647\u064a \u0646\u0642\u0637\u0629 \u0647\u062c\u0648\u0645 \u0645\u062d\u062a\u0645\u0644\u0629. \u062c\u0632\u0621 \u0645\u0647\u0645 \u0645\u0646 \u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631 Linux \u0647\u0648 \u062a\u0642\u0644\u064a\u0644 \u0633\u0637\u062d \u0627\u0644\u0647\u062c\u0648\u0645 (Attack Surface) \u0628\u062a\u0639\u0637\u064a\u0644 \u0627\u0644\u062e\u062f\u0645\u0627\u062a \u063a\u064a\u0631 \u0627\u0644\u0636\u0631\u0648\u0631\u064a\u0629.<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code># \u0639\u0631\u0636 \u062c\u0645\u064a\u0639 \u0627\u0644\u062e\u062f\u0645\u0627\u062a \u0627\u0644\u0639\u0627\u0645\u0644\u0629\nsudo systemctl list-units --type=service --state=running\n\n# \u0639\u0631\u0636 \u0627\u0644\u0645\u0646\u0627\u0641\u0630 \u0627\u0644\u0645\u0641\u062a\u0648\u062d\u0629\nsudo ss -tlnp\n\n# \u062a\u0639\u0637\u064a\u0644 \u062e\u062f\u0645\u0629 \u063a\u064a\u0631 \u0645\u0633\u062a\u062e\u062f\u0645\u0629\nsudo systemctl disable --now cups          # \u062e\u062f\u0645\u0629 \u0627\u0644\u0637\u0628\u0627\u0639\u0629\nsudo systemctl disable --now avahi-daemon   # \u0627\u0643\u062a\u0634\u0627\u0641 \u0627\u0644\u0634\u0628\u0643\u0629\nsudo systemctl disable --now rpcbind        # RPC (\u0625\u0630\u0627 \u0644\u0645 \u062a\u0633\u062a\u062e\u062f\u0645 NFS)\nsudo systemctl disable --now bluetooth      # Bluetooth (\u0644\u0627 \u062d\u0627\u062c\u0629 \u0644\u0647\u0627 \u0639\u0644\u0649 \u0633\u064a\u0631\u0641\u0631)<\/code><\/pre>\n\n\n\n<p>\u0627\u0641\u062d\u0635 \u0627\u0644\u0645\u0646\u0627\u0641\u0630 \u0627\u0644\u0645\u0641\u062a\u0648\u062d\u0629 \u0628\u0627\u0646\u062a\u0638\u0627\u0645 \u0648\u062a\u0623\u0643\u062f \u0645\u0646 \u0623\u0646 \u0643\u0644 \u0645\u0646\u0641\u0630 \u0645\u0641\u062a\u0648\u062d \u0644\u0647 \u0633\u0628\u0628 \u0645\u0634\u0631\u0648\u0639. \u0623\u064a \u0645\u0646\u0641\u0630 \u0645\u0641\u062a\u0648\u062d \u062f\u0648\u0646 \u062d\u0627\u062c\u0629 \u0647\u0648 \u062b\u063a\u0631\u0629 \u0645\u062d\u062a\u0645\u0644\u0629.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"section-10\">\u0627\u0644\u062e\u0637\u0648\u0629 8: \u0625\u0639\u062f\u0627\u062f \u0627\u0644\u062a\u0646\u0628\u064a\u0647\u0627\u062a<\/h2>\n\n\n\n<p>\u0644\u0627 \u064a\u0643\u0641\u064a \u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631 Linux \u0641\u0642\u0637\u060c \u0628\u0644 \u064a\u062c\u0628 \u0645\u0631\u0627\u0642\u0628\u062a\u0647 \u0628\u0627\u0633\u062a\u0645\u0631\u0627\u0631. \u0625\u0639\u062f\u0627\u062f \u062a\u0646\u0628\u064a\u0647\u0627\u062a \u062a\u0644\u0642\u0627\u0626\u064a\u0629 \u064a\u0646\u0628\u0647\u0643 \u0641\u0648\u0631\u0627\u064b \u0639\u0646\u062f \u062d\u062f\u0648\u062b \u0646\u0634\u0627\u0637 \u0645\u0634\u0628\u0648\u0647.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">\u062a\u0646\u0628\u064a\u0647 \u0639\u0646\u062f \u062a\u0633\u062c\u064a\u0644 \u0627\u0644\u062f\u062e\u0648\u0644<\/h3>\n\n\n\n<pre class=\"wp-block-code\"><code># \u0623\u0636\u0641 \u0647\u0630\u0627 \u0627\u0644\u0633\u0643\u0631\u064a\u0628\u062a \u0625\u0644\u0649 \/etc\/profile.d\/login-alert.sh\n#!\/bin\/bash\nSUBJECT=\"SSH Login Alert: $(hostname)\"\nBODY=\"User: $(whoami)\nDate: $(date)\nIP: $(echo $SSH_CONNECTION | awk '{print $1}')\nServer: $(hostname -f)\"\n\necho \"$BODY\" | mail -s \"$SUBJECT\" admin@yoursite.com<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\">\u0645\u0631\u0627\u0642\u0628\u0629 \u0627\u0644\u0645\u0648\u0627\u0631\u062f<\/h3>\n\n\n\n<pre class=\"wp-block-code\"><code># \u0633\u0643\u0631\u064a\u0628\u062a \u062a\u0646\u0628\u064a\u0647 \u0639\u0646\u062f \u0627\u0645\u062a\u0644\u0627\u0621 \u0627\u0644\u0642\u0631\u0635\n#!\/bin\/bash\nTHRESHOLD=85\nUSAGE=$(df \/ | tail -1 | awk '{print $5}' | sed 's\/%\/\/')\nif &#91; \"$USAGE\" -gt \"$THRESHOLD\" ]; then\n    echo \"\u062a\u062d\u0630\u064a\u0631: \u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0627\u0644\u0642\u0631\u0635 \u0648\u0635\u0644 \u0625\u0644\u0649 ${USAGE}%\" | mail -s \"Disk Alert: $(hostname)\" admin@yoursite.com\nfi\n\n# \u0623\u0636\u0641\u0647 \u0643\u0640 cron job \u064a\u0639\u0645\u0644 \u0643\u0644 \u0633\u0627\u0639\u0629\n0 * * * * \/usr\/local\/bin\/disk-alert.sh<\/code><\/pre>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"section-11\">\u0627\u0644\u062e\u0637\u0648\u0629 9: \u062a\u0641\u0639\u064a\u0644 \u0627\u0644\u062a\u062d\u062f\u064a\u062b\u0627\u062a \u0627\u0644\u062a\u0644\u0642\u0627\u0626\u064a\u0629<\/h2>\n\n\n\n<p>\u0627\u0644\u062a\u062d\u062f\u064a\u062b\u0627\u062a \u0627\u0644\u0623\u0645\u0646\u064a\u0629 \u064a\u062c\u0628 \u062a\u0637\u0628\u064a\u0642\u0647\u0627 \u0641\u0648\u0631\u0627\u064b. \u062a\u0641\u0639\u064a\u0644 \u0627\u0644\u062a\u062d\u062f\u064a\u062b\u0627\u062a \u0627\u0644\u062a\u0644\u0642\u0627\u0626\u064a\u0629 \u0644\u0644\u062d\u0632\u0645 \u0627\u0644\u0623\u0645\u0646\u064a\u0629 \u064a\u0636\u0645\u0646 \u062d\u0645\u0627\u064a\u0629 \u0627\u0644\u0633\u064a\u0631\u0641\u0631 \u062d\u062a\u0649 \u0644\u0648 \u0646\u0633\u064a\u062a \u0627\u0644\u062a\u062d\u062f\u064a\u062b \u064a\u062f\u0648\u064a\u0627\u064b. \u0647\u0630\u0647 \u062e\u0637\u0648\u0629 \u062d\u064a\u0648\u064a\u0629 \u0641\u064a \u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631 Linux.<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code># \u062a\u062b\u0628\u064a\u062a unattended-upgrades\nsudo apt install unattended-upgrades -y\n\n# \u062a\u0641\u0639\u064a\u0644\u0647\nsudo dpkg-reconfigure -plow unattended-upgrades<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\">\u062a\u062e\u0635\u064a\u0635 \u0627\u0644\u0625\u0639\u062f\u0627\u062f\u0627\u062a<\/h3>\n\n\n\n<pre class=\"wp-block-code\"><code># \u0645\u0644\u0641 \/etc\/apt\/apt.conf.d\/50unattended-upgrades\nUnattended-Upgrade::Allowed-Origins {\n    \"${distro_id}:${distro_codename}-security\";\n};\n\n\/\/ \u0625\u0631\u0633\u0627\u0644 \u062a\u0642\u0631\u064a\u0631 \u0628\u0627\u0644\u0628\u0631\u064a\u062f\nUnattended-Upgrade::Mail \"admin@yoursite.com\";\n\n\/\/ \u0625\u0639\u0627\u062f\u0629 \u062a\u0634\u063a\u064a\u0644 \u062a\u0644\u0642\u0627\u0626\u064a\u0629 \u0625\u0630\u0627 \u0644\u0632\u0645 \u0627\u0644\u0623\u0645\u0631 (\u0627\u0644\u0633\u0627\u0639\u0629 4 \u0635\u0628\u0627\u062d\u0627\u064b)\nUnattended-Upgrade::Automatic-Reboot \"true\";\nUnattended-Upgrade::Automatic-Reboot-Time \"04:00\";\n\n\/\/ \u062d\u0630\u0641 \u0627\u0644\u062d\u0632\u0645 \u0627\u0644\u0642\u062f\u064a\u0645\u0629\nUnattended-Upgrade::Remove-Unused-Dependencies \"true\";<\/code><\/pre>\n\n\n\n<p>\u062a\u062d\u0642\u0642 \u0645\u0646 \u0623\u0646 \u0627\u0644\u062a\u062d\u062f\u064a\u062b\u0627\u062a \u0627\u0644\u062a\u0644\u0642\u0627\u0626\u064a\u0629 \u062a\u0639\u0645\u0644 \u0628\u0634\u0643\u0644 \u0635\u062d\u064a\u062d:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo unattended-upgrades --dry-run --debug<\/code><\/pre>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"section-12\">\u0627\u0644\u062e\u0637\u0648\u0629 10: \u0645\u0631\u0627\u0642\u0628\u0629 \u0627\u0644\u0633\u062c\u0644\u0627\u062a<\/h2>\n\n\n\n<p>\u0627\u0644\u0633\u062c\u0644\u0627\u062a \u0647\u064a \u0639\u064a\u0648\u0646\u0643 \u0639\u0644\u0649 \u0645\u0627 \u064a\u062d\u062f\u062b \u0641\u064a \u0627\u0644\u0633\u064a\u0631\u0641\u0631. \u0645\u0631\u0627\u0642\u0628\u0629 \u0627\u0644\u0633\u062c\u0644\u0627\u062a \u0628\u0627\u0646\u062a\u0638\u0627\u0645 \u062a\u0633\u0627\u0639\u062f \u0641\u064a \u0627\u0643\u062a\u0634\u0627\u0641 \u0645\u062d\u0627\u0648\u0644\u0627\u062a \u0627\u0644\u0627\u062e\u062a\u0631\u0627\u0642 \u0645\u0628\u0643\u0631\u0627\u064b \u0648\u0647\u064a \u062c\u0632\u0621 \u0644\u0627 \u064a\u062a\u062c\u0632\u0623 \u0645\u0646 \u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631 Linux.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">\u0633\u062c\u0644\u0627\u062a \u0645\u0647\u0645\u0629 \u064a\u062c\u0628 \u0645\u0631\u0627\u0642\u0628\u062a\u0647\u0627<\/h3>\n\n\n\n<pre class=\"wp-block-code\"><code># \u0645\u062d\u0627\u0648\u0644\u0627\u062a \u062a\u0633\u062c\u064a\u0644 \u0627\u0644\u062f\u062e\u0648\u0644 \u0627\u0644\u0641\u0627\u0634\u0644\u0629\nsudo grep \"Failed password\" \/var\/log\/auth.log | tail -20\n\n# \u0645\u062d\u0627\u0648\u0644\u0627\u062a \u0627\u0644\u0648\u0635\u0648\u0644 \u0627\u0644\u0645\u0631\u0641\u0648\u0636\u0629\nsudo grep \"DENIED\" \/var\/log\/ufw.log | tail -20\n\n# \u0639\u0631\u0636 \u0622\u062e\u0631 \u0639\u0645\u0644\u064a\u0627\u062a \u062a\u0633\u062c\u064a\u0644 \u0627\u0644\u062f\u062e\u0648\u0644 \u0627\u0644\u0646\u0627\u062c\u062d\u0629\nlast -20\n\n# \u0639\u0631\u0636 \u0645\u062d\u0627\u0648\u0644\u0627\u062a sudo \u0627\u0644\u0641\u0627\u0634\u0644\u0629\nsudo grep \"authentication failure\" \/var\/log\/auth.log<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\">\u0623\u062f\u0627\u0629 logwatch \u0644\u062a\u0642\u0627\u0631\u064a\u0631 \u064a\u0648\u0645\u064a\u0629<\/h3>\n\n\n\n<pre class=\"wp-block-code\"><code># \u062a\u062b\u0628\u064a\u062a logwatch\nsudo apt install logwatch -y\n\n# \u0625\u0631\u0633\u0627\u0644 \u062a\u0642\u0631\u064a\u0631 \u064a\u0648\u0645\u064a \u0628\u0627\u0644\u0628\u0631\u064a\u062f\nsudo logwatch --output mail --mailto admin@yoursite.com --detail high --range yesterday<\/code><\/pre>\n\n\n\n<p>\u0646\u0635\u064a\u062d\u0629: \u0623\u0631\u0633\u0644 \u0633\u062c\u0644\u0627\u062a\u0643 \u0625\u0644\u0649 \u062e\u0627\u062f\u0645 \u0633\u062c\u0644\u0627\u062a \u0645\u0631\u0643\u0632\u064a (\u0645\u062b\u0644 rsyslog \u0623\u0648 Graylog) \u062d\u062a\u0649 \u0644\u0627 \u064a\u062a\u0645\u0643\u0646 \u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u0645\u0646 \u062d\u0630\u0641 \u0627\u0644\u0633\u062c\u0644\u0627\u062a \u0625\u0630\u0627 \u0627\u062e\u062a\u0631\u0642 \u0627\u0644\u0633\u064a\u0631\u0641\u0631. \u0647\u0630\u0627 \u0645\u0633\u062a\u0648\u0649 \u0645\u062a\u0642\u062f\u0645 \u0645\u0646 \u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631 Linux \u0644\u0643\u0646\u0647 \u0645\u0647\u0645 \u0644\u0644\u0633\u064a\u0631\u0641\u0631\u0627\u062a \u0627\u0644\u062d\u0633\u0627\u0633\u0629.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"section-13\">\u0627\u0644\u062e\u0644\u0627\u0635\u0629<\/h2>\n\n\n\n<p>\u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631 Linux \u0644\u0627 \u064a\u062d\u062a\u0627\u062c \u0633\u0627\u0639\u0627\u062a \u0637\u0648\u064a\u0644\u0629. \u0627\u0644\u062e\u0637\u0648\u0627\u062a \u0627\u0644\u0639\u0634\u0631 \u0627\u0644\u062a\u064a \u0627\u0633\u062a\u0639\u0631\u0636\u0646\u0627\u0647\u0627 \u064a\u0645\u0643\u0646 \u062a\u0646\u0641\u064a\u0630\u0647\u0627 \u0641\u064a 15 \u062f\u0642\u064a\u0642\u0629 \u0648\u062a\u0648\u0641\u0631 \u062d\u0645\u0627\u064a\u0629 \u0645\u0645\u062a\u0627\u0632\u0629 \u0636\u062f \u0627\u0644\u063a\u0627\u0644\u0628\u064a\u0629 \u0627\u0644\u0639\u0638\u0645\u0649 \u0645\u0646 \u0627\u0644\u0647\u062c\u0645\u0627\u062a. \u0625\u0644\u064a\u0643 \u0645\u0644\u062e\u0635\u0627\u064b \u0633\u0631\u064a\u0639\u0627\u064b:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u062d\u062f\u0651\u062b \u0627\u0644\u0646\u0638\u0627\u0645 \u0641\u0648\u0631\u0627\u064b \u0648\u0641\u0639\u0651\u0644 \u0627\u0644\u062a\u062d\u062f\u064a\u062b\u0627\u062a \u0627\u0644\u062a\u0644\u0642\u0627\u0626\u064a\u0629<\/li>\n\n\n\n<li>\u063a\u064a\u0651\u0631 \u0645\u0646\u0641\u0630 SSH \u0648\u0639\u0637\u0651\u0644 root login<\/li>\n\n\n\n<li>\u0627\u0633\u062a\u062e\u062f\u0645 \u0645\u0641\u0627\u062a\u064a\u062d SSH \u0648\u0639\u0637\u0651\u0644 \u0643\u0644\u0645\u0627\u062a \u0627\u0644\u0645\u0631\u0648\u0631<\/li>\n\n\n\n<li>\u062b\u0628\u0651\u062a fail2ban \u0648\u0623\u0639\u0650\u062f \u0627\u0644\u062c\u062f\u0627\u0631 \u0627\u0644\u0646\u0627\u0631\u064a<\/li>\n\n\n\n<li>\u0639\u0637\u0651\u0644 \u0627\u0644\u062e\u062f\u0645\u0627\u062a \u063a\u064a\u0631 \u0627\u0644\u0645\u0633\u062a\u062e\u062f\u0645\u0629<\/li>\n\n\n\n<li>\u0623\u0639\u0650\u062f \u0627\u0644\u062a\u0646\u0628\u064a\u0647\u0627\u062a \u0648\u0631\u0627\u0642\u0628 \u0627\u0644\u0633\u062c\u0644\u0627\u062a<\/li>\n<\/ul>\n\n\n\n<p>\u062a\u0630\u0643\u0631 \u0623\u0646 \u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631 Linux \u0639\u0645\u0644\u064a\u0629 \u0645\u0633\u062a\u0645\u0631\u0629 \u0648\u0644\u064a\u0633\u062a \u0625\u062c\u0631\u0627\u0621\u064b \u0648\u0627\u062d\u062f\u0627\u064b. \u0631\u0627\u0642\u0628 \u0633\u062c\u0644\u0627\u062a\u0643 \u0628\u0627\u0646\u062a\u0638\u0627\u0645\u060c \u0637\u0628\u0651\u0642 \u0627\u0644\u062a\u062d\u062f\u064a\u062b\u0627\u062a\u060c \u0648\u0627\u0628\u0642\u064e \u0639\u0644\u0649 \u0627\u0637\u0644\u0627\u0639 \u0628\u0622\u062e\u0631 \u0627\u0644\u062b\u063a\u0631\u0627\u062a \u0627\u0644\u0623\u0645\u0646\u064a\u0629.<\/p>\n\n\n\n<div style=\"border-right:4px solid #7c3aed;background:#f5f3ff;padding:1.5rem;border-radius:0 12px 12px 0;margin:2rem 0\">\n<p style=\"margin:0 0 .5rem;font-weight:700;color:#4f46e5\">\u0633\u064a\u0631\u0641\u0631\u0627\u062a VPS \u0622\u0645\u0646\u0629 \u0645\u0646 \u0645\u0631\u0627\u0645 \u0647\u0648\u0633\u062a<\/p>\n<p style=\"margin:0;color:#374151\">\u0633\u064a\u0631\u0641\u0631\u0627\u062a VPS \u0645\u0639 \u062d\u0645\u0627\u064a\u0629 DDoS \u0645\u062f\u0645\u062c\u0629 \u0648\u0625\u0639\u062f\u0627\u062f\u0627\u062a \u0623\u0645\u0627\u0646 \u0645\u0633\u0628\u0642\u0629. \u0641\u0631\u064a\u0642\u0646\u0627 \u064a\u0633\u0627\u0639\u062f\u0643 \u0641\u064a \u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631 Linux \u0645\u0646 \u0627\u0644\u064a\u0648\u0645 \u0627\u0644\u0623\u0648\u0644. <a href=\"https:\/\/maram.iq\" target=\"_blank\" rel=\"noopener\" style=\"color:#4f46e5;font-weight:600\">\u0627\u0628\u062f\u0623 \u0645\u0646 \u0647\u0646\u0627<\/a>.<\/p>\n<\/div>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"section-14\">\u0627\u0644\u0623\u0633\u0626\u0644\u0629 \u0627\u0644\u0634\u0627\u0626\u0639\u0629<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\">\u0647\u0644 \u062a\u063a\u064a\u064a\u0631 \u0645\u0646\u0641\u0630 SSH \u0643\u0627\u0641\u064d \u0644\u062a\u0623\u0645\u064a\u0646 \u0627\u0644\u0633\u064a\u0631\u0641\u0631\u061f<\/h3>\n\n\n\n<p>\u0644\u0627\u060c \u062a\u063a\u064a\u064a\u0631 \u0645\u0646\u0641\u0630 SSH \u0648\u062d\u062f\u0647 \u0644\u064a\u0633 \u0643\u0627\u0641\u064a\u0627\u064b. \u0647\u0648 \u064a\u0642\u0644\u0644 \u0645\u062d\u0627\u0648\u0644\u0627\u062a \u0627\u0644\u0627\u062e\u062a\u0631\u0627\u0642 \u0627\u0644\u0622\u0644\u064a\u0629 \u0644\u0643\u0646 \u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u0627\u0644\u0645\u062d\u062a\u0631\u0641 \u0633\u064a\u062c\u062f \u0627\u0644\u0645\u0646\u0641\u0630 \u0627\u0644\u062c\u062f\u064a\u062f \u0628\u0633\u0647\u0648\u0644\u0629. \u064a\u062c\u0628 \u062f\u0645\u062c\u0647 \u0645\u0639 \u0645\u0641\u0627\u062a\u064a\u062d SSH \u0648 fail2ban \u0648\u0627\u0644\u062c\u062f\u0627\u0631 \u0627\u0644\u0646\u0627\u0631\u064a \u0643\u062d\u0632\u0645\u0629 \u0645\u062a\u0643\u0627\u0645\u0644\u0629 \u0645\u0646 \u062e\u0637\u0648\u0627\u062a \u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631 Linux.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">\u0643\u064a\u0641 \u0623\u0633\u062a\u0639\u064a\u062f \u0627\u0644\u0648\u0635\u0648\u0644 \u0625\u0630\u0627 \u0623\u063a\u0644\u0642\u062a \u0646\u0641\u0633\u064a \u062e\u0627\u0631\u062c \u0627\u0644\u0633\u064a\u0631\u0641\u0631\u061f<\/h3>\n\n\n\n<p>\u0625\u0630\u0627 \u0641\u0642\u062f\u062a \u0627\u0644\u0648\u0635\u0648\u0644 \u0639\u0628\u0631 SSH \u0628\u0633\u0628\u0628 \u062e\u0637\u0623 \u0641\u064a \u0627\u0644\u0625\u0639\u062f\u0627\u062f\u0627\u062a\u060c \u064a\u0645\u0643\u0646\u0643 \u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0648\u062d\u062f\u0629 \u0627\u0644\u062a\u062d\u0643\u0645 \u0639\u0628\u0631 \u0644\u0648\u062d\u0629 \u0625\u062f\u0627\u0631\u0629 \u0645\u0632\u0648\u062f \u0627\u0644\u0627\u0633\u062a\u0636\u0627\u0641\u0629 (Console Access). \u0645\u0639\u0638\u0645 \u0645\u0632\u0648\u062f\u064a VPS \u0645\u062b\u0644 \u0645\u0631\u0627\u0645 \u0647\u0648\u0633\u062a \u064a\u0648\u0641\u0631\u0648\u0646 \u0648\u0635\u0648\u0644\u0627\u064b \u0645\u0628\u0627\u0634\u0631\u0627\u064b \u0639\u0628\u0631 \u0627\u0644\u0645\u062a\u0635\u0641\u062d \u0644\u0627 \u064a\u0639\u062a\u0645\u062f \u0639\u0644\u0649 SSH.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">\u0647\u0644 \u0623\u062d\u062a\u0627\u062c \u0628\u0631\u0646\u0627\u0645\u062c \u062d\u0645\u0627\u064a\u0629 (Antivirus) \u0639\u0644\u0649 \u0633\u064a\u0631\u0641\u0631 Linux\u061f<\/h3>\n\n\n\n<p>\u0628\u0631\u0627\u0645\u062c \u0627\u0644\u062d\u0645\u0627\u064a\u0629 \u0627\u0644\u062a\u0642\u0644\u064a\u062f\u064a\u0629 \u0644\u064a\u0633\u062a \u0636\u0631\u0648\u0631\u064a\u0629 \u0639\u0644\u0649 Linux \u0641\u064a \u0645\u0639\u0638\u0645 \u0627\u0644\u062d\u0627\u0644\u0627\u062a. \u0644\u0643\u0646 \u0623\u062f\u0648\u0627\u062a \u0645\u062b\u0644 ClamAV \u0645\u0641\u064a\u062f\u0629 \u0644\u0641\u062d\u0635 \u0627\u0644\u0645\u0644\u0641\u0627\u062a \u0627\u0644\u0645\u0631\u0641\u0648\u0639\u0629 \u0625\u0630\u0627 \u0643\u0627\u0646 \u0627\u0644\u0633\u064a\u0631\u0641\u0631 \u064a\u0633\u062a\u0636\u064a\u0641 \u0645\u0648\u0627\u0642\u0639 \u062a\u0633\u0645\u062d \u0628\u0631\u0641\u0639 \u0627\u0644\u0645\u0644\u0641\u0627\u062a. \u0627\u0644\u0623\u0647\u0645 \u0647\u0648 \u0627\u062a\u0628\u0627\u0639 \u062e\u0637\u0648\u0627\u062a \u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631 Linux \u0627\u0644\u0645\u0630\u0643\u0648\u0631\u0629 \u0641\u064a \u0647\u0630\u0627 \u0627\u0644\u062f\u0644\u064a\u0644.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">\u0643\u0645 \u0645\u0631\u0629 \u064a\u062c\u0628 \u0641\u062d\u0635 \u0623\u0645\u0627\u0646 \u0627\u0644\u0633\u064a\u0631\u0641\u0631\u061f<\/h3>\n\n\n\n<p>\u064a\u064f\u0646\u0635\u062d \u0628\u0625\u062c\u0631\u0627\u0621 \u0641\u062d\u0635 \u0623\u0645\u0646\u064a \u0634\u0627\u0645\u0644 \u0645\u0631\u0629 \u0634\u0647\u0631\u064a\u0627\u064b \u0639\u0644\u0649 \u0627\u0644\u0623\u0642\u0644. \u064a\u0634\u0645\u0644 \u0630\u0644\u0643 \u0645\u0631\u0627\u062c\u0639\u0629 \u0627\u0644\u0633\u062c\u0644\u0627\u062a\u060c \u0627\u0644\u062a\u062d\u0642\u0642 \u0645\u0646 \u0627\u0644\u0645\u0646\u0627\u0641\u0630 \u0627\u0644\u0645\u0641\u062a\u0648\u062d\u0629\u060c \u0641\u062d\u0635 \u0635\u0644\u0627\u062d\u064a\u0627\u062a \u0627\u0644\u0645\u0644\u0641\u0627\u062a\u060c \u0648\u0645\u0631\u0627\u062c\u0639\u0629 \u0627\u0644\u0645\u0633\u062a\u062e\u062f\u0645\u064a\u0646 \u0627\u0644\u0646\u0634\u0637\u064a\u0646. \u0623\u062f\u0648\u0627\u062a \u0645\u062b\u0644 <a href=\"https:\/\/cisofy.com\/lynis\/\" target=\"_blank\" rel=\"noopener\">Lynis<\/a> \u062a\u0633\u0627\u0639\u062f \u0641\u064a \u0623\u062a\u0645\u062a\u0629 \u0639\u0645\u0644\u064a\u0629 \u0627\u0644\u0641\u062d\u0635.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\ud83d\udee1\ufe0f \u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631 Linux \u0641\u064a 15 \u062f\u0642\u064a\u0642\u0629: 10 \u062e\u0637\u0648\u0627\u062a \u0639\u0645\u0644\u064a\u0629 \u0644\u062d\u0645\u0627\u064a\u0629 VPS \u062f\u0644\u064a\u0644 \u0639\u0645\u0644\u064a \u0633\u0631\u064a\u0639 \u0644\u062a\u0623\u0645\u064a\u0646 \u0633\u064a\u0631\u0641\u0631\u0643 \u0641\u0648\u0631 \u062a\u0634\u063a\u064a\u0644\u0647 \u0648\u062d\u0645\u0627\u064a\u062a\u0647 \u0645\u0646 \u0627\u0644\u0627\u062e\u062a\u0631\u0627\u0642 \u0645\u062d\u062a\u0648\u064a\u0627\u062a \u0627\u0644\u0645\u0642\u0627\u0644 &#8592; \u0644\u0645\u0627\u0630\u0627 \u062a\u0623\u0645\u064a\u0646 \u0627\u0644\u0633\u064a\u0631\u0641\u0631 \u0636\u0631\u0648\u0631\u064a &#8592;&#8230;<\/p>\n","protected":false},"author":1,"featured_media":3054,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_joinchat":[],"footnotes":""},"categories":[322],"tags":[174,176,144,152,141,161,156,153,143,140,157],"class_list":["post-2993","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-linux-command-line","tag-linux","tag-mysql","tag-vps","tag-152","tag-141","tag-161","tag--ddos","tag-153","tag-143","tag-140","tag-157"],"_links":{"self":[{"href":"https:\/\/maram.iq\/blogs\/wp-json\/wp\/v2\/posts\/2993","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/maram.iq\/blogs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/maram.iq\/blogs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/maram.iq\/blogs\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/maram.iq\/blogs\/wp-json\/wp\/v2\/comments?post=2993"}],"version-history":[{"count":1,"href":"https:\/\/maram.iq\/blogs\/wp-json\/wp\/v2\/posts\/2993\/revisions"}],"predecessor-version":[{"id":3156,"href":"https:\/\/maram.iq\/blogs\/wp-json\/wp\/v2\/posts\/2993\/revisions\/3156"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/maram.iq\/blogs\/wp-json\/wp\/v2\/media\/3054"}],"wp:attachment":[{"href":"https:\/\/maram.iq\/blogs\/wp-json\/wp\/v2\/media?parent=2993"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/maram.iq\/blogs\/wp-json\/wp\/v2\/categories?post=2993"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/maram.iq\/blogs\/wp-json\/wp\/v2\/tags?post=2993"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}