Một số chỉ thị Apache là tốn kém về hiệu suất, và họ thường là những người đó có yêu cầu phân giải tên miền, cuộc gọi hệ thống, ổ đĩa I / O, và quá trình thao tác. Apache điều chỉnh cấu hình được thảo luận trong "Điều chỉnh Apache cấu hình". | 690 Part VI Tuning for Performance and Scalability 9. If you want LIDS to disconnect the console when a user violates a security rule then select the Hang up console when raising a security alert option. 10. LIDS is enabled during boot up process so it is likely that you will run other programs before it. If you wish to issue a security alert when a program is executed before LIDS protection is enabled select the Security alert when execing unprotected programs before sealing LIDS option. When you select this option you will have a chance to also choose to disable execution of unprotected programs all together by using the Do not execute unprotected programs before sealing LIDS do not recommend that you disallow unprotected programs completely during boot up unless you are absolutely certain that everything that is all the utilities daemons and so on that you want to run during boot are protected and will not stop the normal boot process. 11. Enable the Try not to flood logs NEW option and leave the default 60-second delay between logging of two identical entries to conserve the sanity and the size of the log file. 12. Optional Select the Allow switching LIDS protections option if you want to allow switching of LIDS protection. If you do you can customize this further by selecting the value for Number of attempts to submit password or Time to wait after a fail seconds or Allow remote users to switch LIDS protections or Allow any program to switch LIDS protections or Allow reloading config. file. My preferences are shown below. Allow switching LIDS protections NEW 3 Number of attempts to submit password NEW 3 Time to wait after a fail seconds NEW Allow remote users to switch LIDS protections NEW Allow any program to switch LIDS protections NEW Allow reloading config. file NEW 13. You definitely want to select the Port Scanner Detector in kernel option so that you can detect port scans by potential intruders and the Send security alerts through network .