Official website address: JumpServer - Open Source Bastion Host - Official Website
Online phone: 400-052-0755
Technical support: JumpServer technical consultation
1 Overview
This article mainly introduces the summary of high-risk commands related to Linux. Command filtering can be performed after JumpServer manages Linux assets.
For some high-risk commands, in the daily management process, it cannot be disabled "one size fits all". You can set related commands to block through JumpServer or set up an auditor to review commands.
1.1 Common high-risk commands
Order |
Function |
rm |
Quanpin remove, its function is to delete one or more files or directories. |
is rm |
Quanpin remove empty directories, the function is to delete empty directories. |
chattr |
Change the extended attributes of a file. |
are |
Switch user identities. |
visado |
Exclusive command for editing the /etc/sudoers file. |
sudo |
Execute the commands allowed in the sudoers file as another user (default root user) |
shutdown/halt |
shutdown |
poweroff |
Turn off the power. |
init 0 |
switch runlevel, shutdown |
reboot |
reboot |
init 6 |
reboot |
1.2 Disk and file system management commands
Order |
Function |
mount |
Mount the file system |
unmount |
unmount file system |
fdisk |
Disk partition command, suitable for disk partitions below 2TB |
parted |
Disk partition command, no disk size limit |
mkfs |
Formatting and creating a Linux file system |
mkswap |
Create a Linux swap partition |
swapon |
boot swap partition |
swapoff |
turn off the swap partition |
1.3 System user related commands
Order |
Function |
useradd/adduser |
Add user |
usermod |
Modify the user attributes that already exist in the system |
userdel |
delete users |
passwd |
Modify User Password |
groupadd |
add user group |
groupdel |
delete user group |
change |
Modifying the Expiration Period of a User Password |
1.4 NIC-related commands
Order |
Function |
ifup |
Start the network card |
ifdown |
turn off network card |
for numt |
Modify network related information |
vi /etc/sysconfig/network-scripts/ifcfg-* |
Modify network related information |
1.5 System permissions and user authorization related commands
Order |
Function |
chmod |
Change the permissions of a file or directory |
chown |
Change the owner and group of a file or directory |
chgrp |
Change file user group |
1.6 Built-in commands are other
Order |
Function |
alias |
Set system alias |
you cry |
cancel system alias |
history |
View the history of command execution |
export |
Set or display environment variables |
unset |
delete variable or function |
kill |
terminate process |
killall/pkill |
Terminate a process by process name |