Administrator 111111 Posted February 1, 2009 Administrator Report Share Posted February 1, 2009 / ip firewall filter add chain=input protocol=tcp dst-port=23 src-address-list=black_list action=drop comment="drop telnet brute forcers" disabled=no add chain=input protocol=tcp dst-port=23 connection-state=new src-address-list=telnet_stage3 action=add-src-to-address-list address-list=black_list address-list-timeout=1d comment="" disabled=no add chain=input protocol=tcp dst-port=23 connection-state=new src-address-list=telnet_stage2 action=add-src-to-address-list address-list=telnet_stage3 address-list-timeout=1m comment="" disabled=no add chain=input protocol=tcp dst-port=23 connection-state=new src-address-list=telnet_stage1 action=add-src-to-address-list address-list=telnet_stage2 address-list-timeout=1m comment="" disabled=no add chain=input protocol=tcp dst-port=23 connection-state=new action=add-src-to-address-list address-list=telnet_stage1 address-list-timeout=1m comment="" disabled=no [/code] скрипт против Телнет "хакери" телнет е удобен начиин за конфигуриране на МТ от машина неразползгаща с SSH клиент но все пак желателно е да не забравяте че е нестабилна през интернет и е некриптирана Харесай поста ^^^ Форумът е за взаимопомощ а не за свършване на чужда работа ɹɐǝɥ uɐɔ noʎ ǝɹoɯ ǝɥʇ 'ǝɯoɔǝq noʎ ɹǝʇǝınb ǝɥʇ Link to comment Share on other sites More sharing options...
¤ DJ69 ¤ (ツ) ¤ Posted March 15, 2009 Report Share Posted March 15, 2009 Е след като се сложи скрипта .. телнета не е активен вече така ли ? Link to comment Share on other sites More sharing options...
Administrator 111111 Posted March 15, 2009 Author Administrator Report Share Posted March 15, 2009 активен е до 3-та грешка при вписване Харесай поста ^^^ Форумът е за взаимопомощ а не за свършване на чужда работа ɹɐǝɥ uɐɔ noʎ ǝɹoɯ ǝɥʇ 'ǝɯoɔǝq noʎ ɹǝʇǝınb ǝɥʇ Link to comment Share on other sites More sharing options...
¤ DJ69 ¤ (ツ) ¤ Posted March 16, 2009 Report Share Posted March 16, 2009 А това е друга бира Link to comment Share on other sites More sharing options...
Mitev Posted May 14, 2009 Report Share Posted May 14, 2009 / ip firewall filter add chain=input protocol=tcp dst-port=20-23 src-address-list=Telnet-&-SSH action=drop comment="SSH- Dostup samo ot moita mreja " disabled=no add chain=input protocol=tcp dst-port=20-23 action=log log-prefix="SSH" comment="" disabled=no add chain=input protocol=tcp dst-port=20-23 src-address-list=!my-net-Access action=add-src-to-address-list address-list=Telnet-&-SSH address-list-timeout=4d comment="" disabled=no add chain=input protocol=tcp dst-port=20-23 src-address-list=my-net-Access action=accept comment="" disabled=no така ще ти ги логва ако искаш с timeout 4 дена и ще виждаш кой те атаква, като си имаш достъп от ип-тата описани в my-net-access листата Got problems with Windows? - ReBoot Got problems with Linux? - Be Root <a href="http://www.ggtop50.com/"><img src="http://www.ggtop50.com/button.php?u=Mitev" alt="Top 50 GunGa Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now