← 返回 Skills 市场
27
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install linux-hardener
功能描述
One-command Linux security hardening. Disables root SSH login, sets up UFW firewall with best-practice rules, configures fail2ban for brute-force protection,...
使用说明 (SKILL.md)
Linux Security Hardener
Zero-config server hardening for AI agents.
Run one action to audit and harden your Linux server against common attack vectors. Safe defaults — backs up every config before modifying.
Actions
| Action | Description |
|---|---|
audit |
Scan current security posture (read-only) |
harden |
Apply hardening measures (SSH key-only, UFW, fail2ban) |
rollback |
Restore previous config from backups |
Features
- 🔐 SSH: disable root login, key-only auth, change port option
- 🛡️ UFW: allow only 18792 (OpenClaw), 22 (SSH), rate limiting
- 🚫 fail2ban: SSH brute-force protection, 5 attempts = 10min ban
- 📋 Audit report: open ports, user privileges, weak configs
- 💾 Auto-backup: every change creates a timestamped backup
Pricing
$4.99 — One-time purchase
安全使用建议
Before installing or using this skill, treat `harden` as a privileged server-change operation. Run only on an intended Ubuntu/Debian host, review the exact commands if available, run the audit first, confirm all needed ports, verify SSH key login, keep console or provider recovery access available, and make independent backups before applying changes.
功能分析
Type: OpenClaw Skill
Name: linux-hardener
Version: 1.0.0
The skill bundle contains metadata and documentation for a Linux security hardening tool designed for AI agents. The documentation (SKILL.md) describes standard administrative tasks such as SSH hardening, UFW firewall configuration, and fail2ban setup, all of which are consistent with the stated purpose of improving server security. No executable code was provided, and the instructions contain no evidence of prompt injection, data exfiltration, or malicious intent.
能力标签
能力评估
Purpose & Capability
The stated purpose and described capabilities are coherent for a Linux hardening skill, but they intentionally include high-impact SSH, firewall, and fail2ban changes.
Instruction Scope
The `harden` action is described as a one-action change to authentication and firewall controls, but the artifacts do not show explicit per-change approval, dry-run review, prerequisite checks, or command boundaries.
Install Mechanism
There is no install spec and no code to scan, so the exact commands, backup behavior, and rollback implementation are not reviewable from the provided artifacts.
Credentials
The skill is described for Ubuntu/Debian servers, but the metadata shows no OS restriction or required binaries, despite relying on SSH, UFW, and fail2ban-style behavior.
Persistence & Privilege
The skill proposes persistent privileged system configuration changes, including SSH login policy and firewall rules, with only high-level rollback/backups described.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install linux-hardener - 安装完成后,直接呼叫该 Skill 的名称或使用
/linux-hardener触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release - one-command server hardening
元数据
常见问题
Linux Security Hardener 是什么?
One-command Linux security hardening. Disables root SSH login, sets up UFW firewall with best-practice rules, configures fail2ban for brute-force protection,... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 27 次。
如何安装 Linux Security Hardener?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install linux-hardener」即可一键安装,无需额外配置。
Linux Security Hardener 是免费的吗?
是的,Linux Security Hardener 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Linux Security Hardener 支持哪些平台?
Linux Security Hardener 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Linux Security Hardener?
由 new(@laolaoqi)开发并维护,当前版本 v1.0.0。
推荐 Skills