|
||
|
Advance Member
  
¥[¤J¤é´Á: Mar 2003 ±zªº¦í§}: ¤Ñ¤W¤H¶¡
¤å³¹: 449
|
°ÝÓ SSH ¦w¥þºÞ²z°ÝÃD
¤U±¬O§Úªº SSH log ¸ê®Æ Users logging in through sshd: root: 1.2.3.4 (1-2-3-4.HINET-IP.hinet.net): 10 times 2.2.3.4: 4 times 10.10.10.6 (PC): 1 time 3.2.3.4 (company.com.tw): 1 time Refused incoming connections: 119.10.27.233 (119.10.27.233): 1 Time(s) 122.225.109.103 (122.225.109.103): 3 Time(s) 122.225.109.117 (122.225.109.117): 3 Time(s) 122.225.109.122 (122.225.109.122): 3 Time(s) 122.225.109.123 (122.225.109.123): 3 Time(s) 122.225.109.203 (122.225.109.203): 3 Time(s) 122.225.109.205 (122.225.109.205): 3 Time(s) 122.225.109.218 (122.225.109.218): 3 Time(s) 122.225.109.220 (122.225.109.220): 3 Time(s) 183.110.253.233 (183.110.253.233): 1 Time(s) 200.9.104.42 (200.9.104.42): 1 Time(s) 211.138.30.174 (211.138.30.174): 1 Time(s) 219.136.249.247 (219.136.249.247): 2 Time(s) 221.133.0.17 (221.133.0.17): 3 Time(s) 223.4.82.17 (223.4.82.17): 1 Time(s) 61.174.50.163 (61.174.50.163): 3 Time(s) 61.174.50.165 (61.174.50.165): 3 Time(s) 61.174.50.213 (61.174.50.213): 3 Time(s) 61.174.50.225 (61.174.50.225): 3 Time(s) 61.174.50.235 (61.174.50.235): 3 Time(s) 61.174.51.214 (61.174.51.214): 3 Time(s) 61.174.51.215 (61.174.51.215): 3 Time(s) SFTP subsystem requests: 11 Time(s) ---------------------- SSHD End ------------------------- 1.2.3.4~3.2.3.4 & 10.10.10.6 ³£¬O§Ú deny °£¥~ªºIP¡A©Ò¥H¥i¥H¥Î SSH µn¿ý¡A¦ý¬O¤U±³Q Refusedªº IP¡A®Ú¥»¤£¦b§Ú denyªº¤¹³\½d³ò¤¤¡A«ç»ò·|ÁÙ¦³¤H¥i¥H´ú¤T¦¸¡C Ãø¹D¦³¯S§Oªº«Ê¥]¥i¥H±NIPÅܧó¬°deny ³W«hùر¤¹³\ªºIP¶Ü? ¨º¥¦¤S«ç»òª¾¹D§Údeny³WùرªºIP¬O³]¤°»ò? P.S.¥u¯à´ú¤T¦¸ªºì¦]¬O§Ú¦w¸Ë¤Ffail2ban¡A³]©w¥u¯à´ú¤T¦¸¡A¶W¹L¤T¦¸´N§â¥¦ban±¼¡C §Ú¦³¸Õ¹L denyªº³W«h¡A½T»{¹L«D¤¹³\ªºIP¬OµLªkµn¿ýSSH¡A¦Óallow §Ú¨S¦³³]©w¥ô¦ó³W«h¡C ¦¹¤å³¹©ó 2014-10-03 08:33 AM ³Q ÀH·¯B¶³ ½s¿è. |
|||||||
2014-10-03, 08:31 AM
#121
|
|
|
Junior Member
¥[¤J¤é´Á: Jun 2012
¤å³¹: 733
|
è¸Õ¤F¤@¤U¡A§Úªºµ§¹q IP ¬° 192.168.1.34/24¡ALinux ¥D¾÷ IP ¬° 192.168.1.1/24
/etc/hosts.allow(deny) ³o¨âÓÀɮ׸ÌÀY쥻³£¨S³W«h¡A±µµÛ§Ú§â¥H¤U³o¦æ¥[¨ì /etc/hosts.deny ¨Ã±N§Úªºµ§¹qªº IP §ï¬° 192.168.1.35 ¥N½X:
sshd: ALL EXCEPT 192.168.1.34 µM«á¶}¨â¦¸ Putty ¹Á¸Õ³s±µ¨ì Linux ¥D¾÷¡A¨â¦¸³£ timeout ¤]¨S¥X²{ login µe±¡A±µµÛ§âµ§¹q IP §ï¦^ 192.168.1.34 ¨Ã³s¤W Linux ¥D¾÷¬Ý log ¥N½X:
[jiunyu:~] $ sudo logwatch --detail low --service sshd --range today
################### Logwatch 7.4.0 (05/02/12) ####################
Processing Initiated: Fri Oct 3 11:43:15 2014
Date Range Processed: today
( 2014-Oct-03 )
Period is day.
Detail Level of Output: 0
Type of Output/Format: stdout / text
Logfiles for Host: EPC
##################################################################
--------------------- SSHD Begin ------------------------
Users logging in through sshd:
jiunyu:
192.168.1.34: 3 times
Refused incoming connections:
192.168.1.35 (192.168.1.35): 2 Time(s)
---------------------- SSHD End -------------------------
###################### Logwatch End #########################
¥i¥H¬Ý¨ì³Q¾×¤U¨Óªº¨º¨â¦¸¤]¥X²{¦b log ¸Ì¡A©Ò¥HÀ³¸Ó¬O logwatch ·|§â³Q¾×¤U¨Óªº¤]¤@¨Ö¦C¥X¨Ó¡A«Ê¥]¨Ã¨S¦³³q¹L tcp wrapper ¶]¨ì sshd ¨º¸Ì  |
||
|
2014-10-03, 11:58 AM
#122
|
|
|
Golden Member
 
¥[¤J¤é´Á: Jan 2003 ±zªº¦í§}: ´c¹B²`²W
¤å³¹: 2,562
|
¥ÎiptablesÁÙ¬OÔ£shorewall³B²z¨¾¤õÀð§a
¹³§Ússh¥u¶}¯S©w½d³òªºIP,¨ä¥¦IP¨Ó³sssh,«Ê¥]ª½±µdrop±¼,³s¿ù»~log³£¤£·|¦³ |
|
2014-10-03, 06:25 PM
#123
|
|
|
*°±Åv¤¤*
¥[¤J¤é´Á: May 2005
¤å³¹: 345
|
¤Þ¥Î:
¤Þ¥Î:
¶g¥½¦³¸Õ¤F¤@¤ULubuntu¡A½T¹ê¬O¦³¤ñ¸û§Ö¤@ÂI¡A¤£¹L¬É±ÁÙ¬OGNOME¤ñ¸û²ßºD¡C «á¨Óµo²{ì¨Ó¦w¸ËUbuntu®É·Æ¹«³t«×³Q¹w³]¦b³ÌºC¤F¡AÃø©Ç¦³ÂI¿ð¶w¡C ¥Ø«e¬O±q³nÅ餤¤ß¦w¸Ë¤FGNOME Flashback Session¡A¸Ë¤F¤§«á´N¥i¥HÂ\²æUnity¡A¦^¨ìªºUbuntu¬É±¡A·Pı§ó¶¶ºZ¤@ÂI¡C |
||
|
2014-10-13, 12:26 PM
#124
|
|
|
*°±Åv¤¤*
¥[¤J¤é´Á: Jul 2005
¤å³¹: 734
|
§Ú²{¦b´N¬O¦b¥Î ¢î¢í¢ì¢÷¢ú¢é¢±¢¯¡@¤Wºô
è¦b¡@¢â¢à¢ç¡@¢Ô¢â¢Þ¡@ ÁÙÆZ¦n¥Îªº  |
|
2014-10-13, 03:38 PM
#125
|
|
|
*°±Åv¤¤*
¥[¤J¤é´Á: May 2015 ±zªº¦í§}: ·s¥_
¤å³¹: 26
|
[¦Û»s¤å¥ó¤À¨É]¥HWindows«äºû¥ÎLinux - GNOME®à±½g
[¦Û»s¤å¥ó¤À¨É]¥HWindows«äºû¥ÎLinux - GNOME®à±½g
¥»®Ñ¥D¼ÐÃD¡G¥HWindows«äºû¥ÎLinux - GNOME®à±½g ¥»®Ñ°Æ¼ÐÃD¡G¥HDebian Linux 8 Jessieµo¦æª©¬°¨Ò ³o¥÷¤å¥ó±qÀY¨ì§À§¹¥þ´N¬O¥HMsWindows¹Ï§Î®à±²×ºÝ¨Ï¥ÎªÌ(¥[¤W¨Ç³\ªºMsDOS)ªº«äºûÅÞ¿è¼g¥X¨Óªº¡C ³o¥÷¤å¥ó[¤£¬O]¼gµ¹³nÅé¶}µoªÌ¬Ýªº¡C ³o¥÷¤å¥ó[¤£¬O]¼gµ¹§Þ«È/¬YºØµ{«×¥H¤Wªº¶i¶¥¹q¸£ª±®a/²×ºÝ¾÷«ü¥O±±¬Ýªº¡C ³o¥÷¤å¥ó[¤£¬O]¼gµ¹»ÝnºÞ²z¤¥x¥H¤Wªºunix-like¹q¸£¨t²ÎºÞ²zû¬Ýªº¡C ©Ò¥HY±z´Á±æ·|±q³o¥÷¤å¥ó¤¤Àòªº¤°»òLinux¶i¶¥¨t²Î§Þ³N¼h±ªºªF¦è¡A¨º»ò´N·|Åý±z¥¢±æ¤F¡A"µ´¹ï¨S¦³"¡C ³o¥÷¤å¥ó[¬O]¼gµ¹·Qn§â[Linux¹Ï§Î®à±]·í¦¨[MsWindows®a¥Î¶i¶¥ª©]¨Ó¦w¸Ë³]©w¨Ï¥Îªº¹Ï§Î®à±²×ºÝ¨Ï¥ÎªÌ(©Î³\¦³¨Ç³\ªºDOS¾Þ§@¸gÅç)¬Ýªº¡C ³o¥÷¤å¥ó[¬O]¼gµ¹¥xÆWªº¹q¸£°Ó°éµó²Ä¤@½uªºPCDIY¹q¸£²Õ¸Ë¤uµ{®v(ÄéMsWindows¬°¥D)¬Ýªº¡C ³o¤À¤å¥ó¹Á¸Õ¥H"¬Û¹ï¨Ó»¡"³Ì§Öªº³t«×¡AÅý¤@¦ì¨S¸I¹Lunix-likeÀô¹Òªº¹Ï§Î®à±²×ºÝ¨Ï¥ÎªÌ(©Î³\¦³¨Ç³\ªºDOS¾Þ§@¸gÅç)¡B ¬Æ¦Ü¨S¸I¹Lunix-likeÀô¹Ò¦ý¨ã¦³MsWindows¨t²ÎºÞ²z±M·~ªº¶i¶¥¹q¸£ª±®a¡A¤W¤âDebian Linux 8 Jessie GNOME®à±Àô¹Ò¡C ³o¥÷¤å¥óªº¹Ï¤å±Æª©ªº³¡¤À¡AÁÙ³B©ó[¥ý¨D¦³]ªº¶¥¬q¡C ³o¥÷¤å¥ó[¤º¤å´yz]ªº³¡¤À¡AÅwªï[¥Î¤O«ü±Ð]¡C ¶â¡ã¹w¨¾°w¤@¶}©lÁÙ¬On¥ý¥´¤@¤U¡ã¡ã¡ã ¥»®Ñ¥D¼ÐÃD¡G¥HWindows«äºû¥ÎLinux - GNOME®à±½g ¥»®Ñ°Æ¼ÐÃD¡G¥HDebian Linux 8 Jessieµo¦æª©¬°¨Ò https://zh.scribd.com/doc/266559453...n-Linux-8-GNOME |
|
2015-05-27, 01:07 PM
#126
|
|
