|
|
| 第5行: |
第5行: |
| [[SSH证书登录]] | | [[SSH证书登录]] |
|
| |
|
| ==fail2ban==
| |
|
| |
|
| === 安装 ===
| |
| '''apt install fail2ban'''
| |
|
| |
| === 配置 ===
| |
|
| |
|
| |
| vim /etc/fail2ban/jail.local<syntaxhighlight lang="bash">
| |
| [sshd]
| |
| enabled = true
| |
| port = 14213
| |
| filter = sshd
| |
| logpath = /var/log/auth.log
| |
| maxretry = 5
| |
| bantime = 12h
| |
| </syntaxhighlight>
| |
|
| |
| === 重启 ===
| |
| service fail2ban restart
| |
|
| |
| '''fail2ban-client status sshd'''
| |
|
| |
| === 日志 ===
| |
| /var/log/fail2ban.log
| |
|
| |
|
|
| |
|
2023年10月16日 (一) 05:36的版本
日志
/var/log/auth.log 中记录了SSH登录尝试,如果没有此文件,可尝试重启syslog: service syslog restart
防护
SSH证书登录