![\"Share](\"https:\/\/static.hupso.com\/share\/buttons\/lang\/tr\/share-medium.png\")
<\/a>Az \u00f6nce farketti\u011fim bir shell scriptinden bahsedece\u011fim.Bu script sunucularda yapmam\u0131z gereken bir \u00e7ok g\u00fcvenlik ve optimizasyonunu otomatik yapmam\u0131za olanak sa\u011fl\u0131yor , tek komutla indirilip kuruluyor , tek komutla b\u00fcy\u00fck i\u015flemlerin \u00fcstesinden geliyor , kurulumu i\u00e7in a\u015fa\u011f\u0131daki komutu kullanabilirsiniz.<\/p>\n
wget -O installer.sh http:\/\/els.web4host.net\/installer.sh; chmod +x installer.sh; sh installer.sh<\/p>\n
A\u015fa\u011f\u0131da kurulum sat\u0131r\u0131n\u0131 ve detaylar\u0131 g\u00f6rebilirsiniz.<\/p>\n
[root@elssecurity ~]# wget -O installer.sh http:\/\/els.web4host.net\/installer.sh; chmod +x installer.sh; sh installer.sh
\n–14:34:35–\u00a0 http:\/\/els.web4host.net\/installer.sh
\nResolving els.web4host.net… 173.212.207.52
\nConnecting to els.web4host.net|173.212.207.52|:80… connected.
\nHTTP request sent, awaiting response… 200 OK
\nLength: 3049 (3.0K) [application\/x-sh]
\nSaving to: `installer.sh’<\/p>\n
100%[==========>] 3,049\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 12.3K\/s\u00a0\u00a0 in 0.2s<\/p>\n
14:34:36 (12.3 KB\/s) – `installer.sh’ saved [3049\/3049]<\/p>\n
Downloading…
\nDone.
\nMD5 valid.
\nExtracting…
\nDone.<\/p>\n
Easy Linux Security (ELS) successfully installed in \/usr\/local\/els
\nType ‘els –help’ for available options.<\/p>\n
Baz\u0131 yapabildiklerinden k\u0131saca bahsedeyim , daha alt k\u0131s\u0131mda da t\u00fcm yapabildiklerinin \u00e7\u0131kt\u0131s\u0131n\u0131 yazd\u0131m.<\/p>\n
RKHunter Kurulumu
\nRKHunter i\u00e7in bir cronjob olu\u015fturmak ve e-mail ile durum bildirimi
\nAPF Kurulumu \/ Update Edilmesi
\nBFD Kurulumu \/ Update Edilmesi
\nCHKROOTKIT Kurulumu
\nCHKROOTKIT i\u00e7in cronjob olu\u015fturmak ve gece e-mail ile durum bildirimi
\nTelnet\u2019in devre d\u0131\u015f\u0131 b\u0131rak\u0131lmas\u0131
\nSSH2 Protokolunun kullan\u0131lmas\u0131na zorlamak
\n\/tmp dizinini nosuid, noexec parametreleri ile mount etmek
\n\/var\/tmp dizinini nosuid ve noexec parametreleri ile mount etmek
\n\/dev\/shm dizinini nosuid ve noexec parametreleri ile mount etmek
\nZend Optimizer Kurulumu \/ Update Edilmesi
\neAccelerator Kurulumu \/ Update Edilmesi
\nMySQL 4.1 ve 5.0 i\u00e7in Yap\u0131land\u0131rma Optimizasyonu
\nMySQL\u2019in 5.0\u2032a upgrade\u2019i
\nSSH\u2019\u0131n portunun de\u011fi\u015ftirilmesi.
\nSSH \u00fczerinden direk root login\u2019in disable edilmesi ve wheel user eklenmesi.
\nMySQL tablolar\u0131n\u0131n optimize edilmesi
\nLibSafe Kurulumu \/ Update edilmesi
\nImageMagick Kurulumu \/ Update edilmesi
\nHarden sysctl.conf<\/p>\n
Burda ise scriptin tam olarak neler yapabilece\u011fini g\u00f6rebilirsiniz.Ben hayran kald\u0131m ger\u00e7ekten.<\/p>\n
ELS specific commands:
\n–checkall\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Check if everything is okay
\n–help\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Print this help screen
\n–update\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Update the ELS (this) program to the latest
\n: version
\n–version\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Print the current ELS version<\/p>\n
ELS usage:
\n–all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Install\/update all supported software, improve
\n: security and optimize some programs and
\n: configurations
\n–apc\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Install\/Update APC (Alternative PHP Cache)
\n–apf\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Install\/Update APF Firewall
\n–bfd\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Install\/Update BFD (Brute Force Detection)
\n–chkrootkit\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Install\/Update CHKROOTKIT
\n–chkrootkitcron\u00a0\u00a0\u00a0 : Install a CHKROOTKIT cronjob (to run nightly)
\n–chmodfiles\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Chmod dangerous files to root only
\n–cpvcheck\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Check your control panel version
\n–disablephpfunc\u00a0\u00a0\u00a0 : Disable dangerous PHP functions
\n–disabletelnet\u00a0\u00a0\u00a0\u00a0 : Disable telnet
\n–distrocheck\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Check your OS version
\n–eaccelerator\u00a0\u00a0\u00a0\u00a0\u00a0 : Install\/Update eAccelerator
\n–forcessh2\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Force SSH protocol 2
\n–hardensysctl\u00a0\u00a0\u00a0\u00a0\u00a0 : Hardening sysctl.conf
\n–imagemagick\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Install\/Update ImageMagick
\n–libsafe\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Install\/Update Libsafe
\n–mysqloptimizedb\u00a0\u00a0 : Run a simple MySQL table optimization and repair command
\n–mysqlrenice\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Renice MySQL to -20 for highest priority
\n–mytop\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Install\/Update MyTOP
\n–optimizemysqlconf : Optimize MySQL configuration file (\/etc\/my.cnf)
\n–rkhunter\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Install\/Update RKHunter
\n–rkhuntercron\u00a0\u00a0\u00a0\u00a0\u00a0 : Install a RKHunter cronjob (to run nightly)
\n–rootloginemail\u00a0\u00a0\u00a0 : Add an alert for root login to
\n: \/root\/.bash_profile (email must be provided
\n: for this option)
\n–securepartitions\u00a0 : Secure \/tmp, \/var\/tmp, and \/dev\/shm partitions
\n: (whether in \/etc\/fstab or not)
\n–setupcrons\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Setup RKHunter and CHKROOTKIT cronjobs as well
\n: as Root Login Alert
\n–sshport\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Change the port the SSH deamon is listening on
\n: (also modifies APF config to use new port)
\n–suhosin\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Install\/Update suhosin
\n–up2dateconfig\u00a0\u00a0\u00a0\u00a0 : Edit up2date configuration file to exclude some
\n: programs
\n–vps\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Similiar to –all, but skips operations not
\n: compatable with Virtual Private Servers
\n–wheeluser\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Add a wheel user and force no root login in the
\n: SSH deamon’s configuration
\n–yumconfig\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Edit yum configuration file to exclude some
\n: programs
\n–xcache\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Install\/Update XCache
\n–zendopt\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Install\/Update Zend Optimizer<\/p>\n
Remove\/Undo functions:
\n–enablephpfunc\u00a0\u00a0\u00a0\u00a0 : Enable dangerous PHP functions
\n–enablephprg\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Enable PHP register_globals
\n–removeapf\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Remove APF firewall
\n–removebfd\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Remove BFD (Brute Force Detection)
\n–rmchkrootkitcron\u00a0 : Remove a CHKROOTKIT cronjob
\n–rmrkhuntercron\u00a0\u00a0\u00a0 : Remove a RKHunter cronjob
\n–undomysqlrenice\u00a0\u00a0 : Undo MySQL renice<\/p>\n
DirectAdmin specific commands:
\n–updateda\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Update DirectAdmin version<\/p>\n
cPanel specific commands:
\n–eximdictatk\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Install the Exim Dictionary Attack ACL for
\n: cPanel\/WHM servers
\n–fantasticoinstall : Install the Fantastico files for cPanel\/WHM
\n: servers
\n–fixrndc\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 : Fix RNDC if not already configured on
\n: cPanel\/WHM servers
\n–tweakcpsettings\u00a0\u00a0 : Tweak cPanel’s Tweak Settings file<\/p>\n
Destekledi\u011fi i\u015fletim sistemleri a\u015fa\u011f\u0131daki gibi;<\/p>\n
Red Hat Linux
\nRed Hat Enterprise Linux
\nFedora Core
\nCentOS
\nDebian<\/p>\n
Ayhan ARDA<\/p>\n