· KLDP.org · KLDP.net · KLDP Wiki · KLDP BBS ·
Ssh Attack List

Nainu°¡ 10ÀÏÁ¤µµÀÇ ±â°£µ¿¾È LogWatchÀÇ Á¤º¸¸¦ ¹ÙÅÁÀ¸·Î /etc/hosts.deny ¿¡ ssh ¾îÅÃÀ» ÇÏ´Â IP¸¦ Âß Àû¾îº¸¾Ò½À´Ï´Ù. ÇÏ·ç¿¡ µÎ¼¼°³ Á¤µµ¾¿ Ãß°¡µÇ´Âµ¥ ÇÊ¿äÇϽŠºÐµéÀÌ ½áº¸½Ã°í, °³¼±»çÇ×ÀÌ ÀÖ´Ù¸é ¾Ë·ÁÁÖ¼¼¿ä. Ãß°¡ÇÏ½Ç ºÐÀÌ ÀÖ´Ù¸é Ãß°¡Çϼŵµ ÁÁ°Ú³×¿ä. :)

Ãß°¡ÇÑ ±âÁØÀº ´ÙÀ½°ú °°½À´Ï´Ù.

  • Çѱ¹ÀÌ ¾Æ´Ï´Ù.
  • Çѱ¹ÀÌ ¾Æ´Ò °æ¿ì ÃÖ´ëÇÑ ³Ð°Ô Àû¿ëÇÑ´Ù
  • ±¹°¡ ¶§¹®¿¡ ´ë¿ªÀÌ ³Ê¹« Á¼°Ô ÀâÈ÷°Ô µÇ¸é, Çѱ¹ÀÌ Æ÷ÇÔµÉÁö¶óµµ ¸ðµÎ ¸·¾Æ¹ö¸².

±×·±µ¥ ÀÌ ÀÌÀü¿¡ ¸ÕÀú º¸¾È¿¡ ¿¹¹ÎÇÑ ¼­¹ö¶ó¸é ƯÁ¤ IP ¿Ü¿£ ´Ù ssh¸¦ ¸·¾Æ¹ö¸®´Â°Ô ´õ Áß¿äÇÏ°í, ±×·¸Áö ¾Ê´Ù¸é /sbin/nologin µîÀ¸·Î »ç¿ëÇÏÁö ¾Ê´Â °èÁ¤À» ¸ðµÎ ºñÈ°¼º½ÃÅ°°í ³­ ÈÄ¿¡ ÀÌ ¹æ¹ýÀ» Àû¿ëÇϴ°ÍÀÌ ÁÁ°Ú½À´Ï´Ù.

#
# hosts.deny    This file describes the names of the hosts which are
#               *not* allowed to use the local INET services, as decided
#               by the '/usr/sbin/tcpd' server.
#
# The portmap line is redundant, but it is left to remind you that
# the new secure portmap uses hosts.deny and hosts.allow.  In particular
# you should know that NFS uses portmap!
#
# see also http://wiki.kldp.org/wiki.php/SshAttackList?action=show

ALL: 140.*
ALL: 61.*
ALL: 63.*
ALL: 64.*
ALL: 65.*
ALL: 66.*
ALL: 81.*
ALL: 82.*
ALL: 83.*
ALL: 84.*
ALL: 85.*
ALL: 151.*
ALL: 200.*
ALL: 201.*
ALL: 202.*
ALL: 203.81.*
ALL: 207.*
ALL: 210.196.*
ALL: 210.240.*
ALL: 210.34.*
ALL: 210.73.*
ALL: 210.77.*
ALL: 211.114.138.*
ALL: 211.124.*
ALL: 211.192.*
ALL: 211.198.*
ALL: 211.214.*
ALL: 211.233.162.*
ALL: 211.233.89.*
ALL: 211.23.*
ALL: 211.61.*
ALL: 212.202.*
ALL: 212.24.*
ALL: 213.*
ALL: 216.*
ALL: 218.249.*
ALL: 218.90.*
ALL: 220.194.*
ALL: 220.202.*
ALL: 221.12.*
ALL: 221.186.*
ALL: 221.253.*
ALL: 222.236.*
ALL: 222.236.*


  • ¿äÁò sshd ¾îÅÃÀÌ ÀÚÁÖ µé¾î¿À´Âµ¥, ¼­·Î °øÀ¯ÇÏ´Â ÀÚ·á°¡ µÆÀ¸¸é ÁÁ°Ú³×¿ä~ - ±î³ª¸®




sponsored by andamiro
sponsored by cdnetworks
sponsored by HP

Valid XHTML 1.0! Valid CSS! powered by MoniWiki
last modified 2005-10-19 13:28:38
Processing time 0.0028 sec