首页| JavaScript| HTML/CSS| Matlab| PHP| Python| Java| C/C++/VC++| C#| ASP| 其他|
购买积分 购买会员 激活码充值

您现在的位置是:虫虫源码 > 其他 > sshwatch

sshwatch

  • 资源大小:2.98 kB
  • 上传时间:2021-06-30
  • 下载次数:0次
  • 浏览次数:1次
  • 资源积分:1积分
  • 标      签:

资 源 简 介

Intrusion Prevention System (IPS) for ssh (default port 22), this IPS responds to the suspicious activity by setting the linux firewall (iptables) to block network traffic from the suspected malicious source. Suspicious activity is determined via auth or security logs. This IPS is linux only, using iptables, and thus must be run as root. thresh = (number of seconds between consecutive attempts) attempts = (number of consecutive attempts) clear = (number of seconds elapsed to clear active source blocks) This IPS has been tested on: debian linux - /var/log/auth.log redhat linux - /var/log/secure Best practice for running this program: ./sshwatch.py /var/log/auth.log >>/root/sshwatch.log 2>&1 & Program Overview: Continuously tail (subprocess tail -F) the system security logs, searching for a match on "sshd", "Failed password", "Invalid user&qu

相 关 资 源

您 可 能 感 兴 趣 的

同 类 别 推 荐

VIP VIP