Kare Shigar PHP tare da Suhosin Security Patch a cikin RHEL/CentOS/Fedora


Suhosin shine tushen ingantaccen tsaro da tsarin facin kariya don girke PHP. Babban burin suhosin shine kare sabobin da masu amfani da wasu lahani da ba a sani ba da sauran lahani da ba a san su ba cikin aikace-aikacen da suka hada da WordPress da sauran aikace-aikacen php da yawa.

A cikin wannan labarin zamu nuna muku hanyoyi biyu don girka Suhosin Patch a ƙarƙashin tsarin RHEL/CentOS/Fedora. Da fatan za a lura a wasu abubuwan rarraba Linux kamar Debian da Ubuntu, an aika suhosin ta tsohuwa.

Duba kuma: Kare Sabar Linux tare da LMD (Binciken Malware na Linux)

Kashi na farko ya hada da amfani da lambar sanya lambar tushe da kuma sanya bangare na biyu shine ta hanyar kunna wurin ajiyar kayan tarihi na bangare na uku.

Sashe na 1: Shigar da Suhosin Patch ta amfani da Code na tushe

Da farko shigar da tsarin dogaro na php-devel sannan kuma zazzage sabon juzu'in suhosin facin ta amfani da wget command kuma ku kwance shi.

# yum install php-devel
# wget http://download.suhosin.org/suhosin-0.9.33.tgz
# tar -xvf suhosin-0.9.33.tgz

Na gaba, gudanar da waɗannan umarni don tattara facin suhosin don shigarwar php.

# cd suhosin-0.9.33
# phpize
# ./configure
# make
# make install

Createirƙiri faifan sanyi suhosin ɗin ta hanyar ƙara tsawo na suhosin ɗin a ciki.

# echo 'extension=suhosin.so' > /etc/php.d/suhosin.ini

Sake kunna sabar yanar gizo Apache, Nginx ko Lighttpd.

# service httpd restart
# service nginx restart
# service lighttpd restart

Sashe na 2: Shigar da Suhosin Patch ta hanyar amfani da wurin ajiyar EPEL

Kunna ma'ajiyar EPEL a ƙarƙashin tsarin RHEL/CentOS sannan kuma gudanar da wannan umarni don girka shi. (Lura: Mai amfani da Fedora baya buƙatar ƙara wurin ajiyar epel).

# yum install php-devel
# yum install php-suhosin

Sake kunna sabar yanar gizo Apache, Nginx ko Lighttpd.

# service httpd restart
# service nginx restart
# service lighttpd restart

Tabbatar da Suhosin Patch

Rubuta umarni mai zuwa don tabbatar da kafuwa suhosin.

# php -v
PHP 5.3.3 (cli) (built: Jul  3 2012 16:40:30)
Copyright (c) 1997-2010 The PHP Group
Zend Engine v2.3.0, Copyright (c) 1998-2010 Zend Technologies
with Suhosin v0.9.33, Copyright (c) 2007-2012, by SektionEins GmbH

Don neman ƙarin bayani game da suhosin facin ƙirƙirar fayel mai zuwa a ƙarƙashin tushen tushen sabar yanar gizonku. Misali, (/ var/www/html /).

# vi phpinfo.php

Sanya layuka masu zuwa a ciki.

<?php

     phpinfo ();
?>

Yanzu gwada samun dama ga shafin ta amfani da duk wani burauzar gidan yanar gizo ka rubuta http://yourdomain.com/phpinfo.php. Za ku ga allon ƙasa.

Suhosin ya zo tare da daidaitaccen tsari kuma yana aiki daga akwatin, babu ƙarin canje-canje da ake buƙata. Amma idan kuna son saita shi gwargwadon saitin ku, to ziyarci suhosin configurate page dan karin bayani.