SSH防护:修订间差异
跳转到导航
跳转到搜索
小 导入1个版本 |
无编辑摘要 |
||
| 第7行: | 第7行: | ||
==fail2ban== | ==fail2ban== | ||
'''sudo apt install fail2ban''' | '''sudo apt install fail2ban''' | ||
vim /etc/fail2ban/jail.local<syntaxhighlight lang="bash"> | |||
[sshd] | |||
enabled = true | |||
port = 14213 | |||
filter = sshd | |||
logpath = /var/log/auth.log | |||
maxretry = 5 | |||
</syntaxhighlight>service fail2ban restart | |||
'''fail2ban-client status sshd''' | '''fail2ban-client status sshd''' | ||
[[Category:SSH]] | [[Category:SSH]] | ||
2023年10月16日 (一) 05:25的版本
日志
/var/log/auth.log 中记录了SSH登录尝试,如果没有此文件,可尝试重启syslog: service syslog restart
防护
fail2ban
sudo apt install fail2ban
vim /etc/fail2ban/jail.local
[sshd]
enabled = true
port = 14213
filter = sshd
logpath = /var/log/auth.log
maxretry = 5
service fail2ban restart
fail2ban-client status sshd