论坛徽章:: 0

电梯直达

1楼 [收藏(0)] [报告]

发表于 2010-02-22 15:35 |只看该作者 |倒序浏览

本帖最后由 gianterdaddy 于 2010-02-22 15:39 编辑

sshd_conf 怎么配置呢？次数是限制了但是禁不住他用其他新连接来测试
ClientAliveInterval 10
ClientAliveCountMax 3
iptables 怎么都感觉不靠谱啊因为iptables 貌似只能对特定的IP范围来限制SSH的次数

vi /var/log/secure 看到的

Feb 21 12:23:52 localhost sshd[9077]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:23:55 localhost sshd[9078]: Failed password for root from ::ffff:113.105.131.130 port 47274 ssh2
Feb 21 12:23:55 localhost sshd[9079]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:23:57 localhost sshd[9080]: Failed password for root from ::ffff:113.105.131.130 port 47759 ssh2
Feb 21 12:23:57 localhost sshd[9081]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:00 localhost sshd[9082]: Failed password for root from ::ffff:113.105.131.130 port 48238 ssh2
Feb 21 12:24:00 localhost sshd[9083]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:03 localhost sshd[9084]: Failed password for root from ::ffff:113.105.131.130 port 48709 ssh2
Feb 21 12:24:03 localhost sshd[9085]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:06 localhost sshd[9086]: Failed password for root from ::ffff:113.105.131.130 port 49172 ssh2
Feb 21 12:24:06 localhost sshd[9087]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:09 localhost sshd[9088]: Failed password for root from ::ffff:113.105.131.130 port 49672 ssh2
Feb 21 12:24:09 localhost sshd[9089]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:11 localhost sshd[9090]: Failed password for root from ::ffff:113.105.131.130 port 50145 ssh2
Feb 21 12:24:11 localhost sshd[9091]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:14 localhost sshd[9092]: Failed password for root from ::ffff:113.105.131.130 port 50617 ssh2
Feb 21 12:24:14 localhost sshd[9093]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:17 localhost sshd[9094]: Failed password for root from ::ffff:113.105.131.130 port 51083 ssh2
Feb 21 12:24:17 localhost sshd[9095]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:20 localhost sshd[9096]: Failed password for root from ::ffff:113.105.131.130 port 51564 ssh2
Feb 21 12:24:20 localhost sshd[9097]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:23 localhost sshd[9098]: Failed password for root from ::ffff:113.105.131.130 port 52042 ssh2
Feb 21 12:24:23 localhost sshd[9099]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:26 localhost sshd[9100]: Failed password for root from ::ffff:113.105.131.130 port 52501 ssh2
Feb 21 12:24:26 localhost sshd[9101]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:28 localhost sshd[9102]: Failed password for root from ::ffff:113.105.131.130 port 52983 ssh2
Feb 21 12:24:28 localhost sshd[9103]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:31 localhost sshd[9104]: Failed password for root from ::ffff:113.105.131.130 port 53454 ssh2
Feb 21 12:24:31 localhost sshd[9105]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:34 localhost sshd[9106]: Failed password for root from ::ffff:113.105.131.130 port 53930 ssh2
Feb 21 12:24:34 localhost sshd[9107]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:37 localhost sshd[9108]: Failed password for root from ::ffff:113.105.131.130 port 54411 ssh2
Feb 21 12:24:37 localhost sshd[9109]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:40 localhost sshd[9110]: Failed password for root from ::ffff:113.105.131.130 port 54876 ssh2
Feb 21 12:24:40 localhost sshd[9111]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:42 localhost sshd[9112]: Failed password for root from ::ffff:113.105.131.130 port 55352 ssh2
Feb 21 12:24:42 localhost sshd[9113]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:45 localhost sshd[9114]: Failed password for root from ::ffff:113.105.131.130 port 55840 ssh2
Feb 21 12:24:45 localhost sshd[9115]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:48 localhost sshd[9116]: Failed password for root from ::ffff:113.105.131.130 port 56318 ssh2
Feb 21 12:24:48 localhost sshd[9117]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:51 localhost sshd[9118]: Failed password for root from ::ffff:113.105.131.130 port 56798 ssh2
Feb 21 12:24:51 localhost sshd[9119]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:54 localhost sshd[9120]: Failed password for root from ::ffff:113.105.131.130 port 57259 ssh2
Feb 21 12:24:54 localhost sshd[9121]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:57 localhost sshd[9122]: Failed password for root from ::ffff:113.105.131.130 port 57733 ssh2
Feb 21 12:24:57 localhost sshd[9123]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:24:59 localhost sshd[9124]: Failed password for root from ::ffff:113.105.131.130 port 58215 ssh2
Feb 21 12:24:59 localhost sshd[9125]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:25:02 localhost sshd[9126]: Failed password for root from ::ffff:113.105.131.130 port 58694 ssh2
Feb 21 12:25:02 localhost sshd[9127]: Received disconnect from ::ffff:113.105.131.130: 11: Bye Bye
Feb 21 12:25:05 localhost sshd[9128]: Failed password for root from ::ffff:113.105.131.130 port 59166 ssh2

文库|博客

gianterdaddy

白手起家

论坛徽章:: 0

2楼 [报告]

发表于 2010-02-22 15:37 |只看该作者

敢问各位的好的解决办法。。。
注：暂时不想改变22端口。。。。

实战分享：从技术角度谈机器学习入门| 【大话IT】RadonDB低门槛向MySQL集群下战书 | ChinaUnix打赏功能已上线！ | 新一代分布式关系型数据库RadonDB知多少？

返回列表

Chinaunix › 论坛 › IT运维 › 数据安全 › 机器在被人家扫描root密码咋个解决--

机器在被人家扫描root密码 咋个解决-- [复制链接]

机器在被人家扫描root密码咋个解决-- [复制链接]