putty Á¢¼Ó¹®Á¦(2) Áý¿¡¼µµ ·Î±×ÀÎÀÌ ¾ÈµË´Ï´Ù. logÆÄÀÏ Ã·ºÎ ¼ö»óÇÑ ¾ÆÀÌÇÇ¿¡¼ °è¼Ó ·Î±×Àνõµ°¡
안녕하세요.
집에와서도 테스트중인데 로그인이 안됩니다.
삼바로 리눅스파티션이 연결되어있어 log파일 찾아보는중인데
수상한 흔적이 보입니다. 제가 로그인 시도를 안하는데 누군가 계속 로그인 시도를 하는거 같내요.
로그 일부분 첨부합니다.
어떻게 해야할까요.
Dec 21 19:33:05 volonas sshd[21159]: Disconnecting: Too many authentication failures [preauth]
Dec 21 19:33:05 volonas sshd[21159]: PAM 5 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.100.67.244 user=root
Dec 21 19:33:05 volonas sshd[21159]: PAM service(sshd) ignoring max retries; 6 > 3
Dec 21 19:33:07 volonas sshd[21165]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.100.67.244 user=root
Dec 21 19:33:09 volonas sshd[21165]: Failed password for root from 182.100.67.244 port 34802 ssh2
Dec 21 19:33:23 volonas sshd[21165]: message repeated 5 times: [ Failed password for root from 182.100.67.244 port 34802 ssh2]
Dec 21 19:33:23 volonas sshd[21165]: error: maximum authentication attempts exceeded for root from 182.100.67.244 port 34802 ssh2 [preauth]
Dec 21 19:33:23 volonas sshd[21165]: Disconnecting: Too many authentication failures [preauth]
Dec 21 19:33:23 volonas sshd[21165]: PAM 5 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.100.67.244 user=root
Dec 21 19:33:23 volonas sshd[21165]: PAM service(sshd) ignoring max retries; 6 > 3
Dec 21 19:33:25 volonas sshd[21169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.100.67.244 user=root
Dec 21 19:33:27 volonas sshd[21169]: Failed password for root from 182.100.67.244 port 8606 ssh2
Dec 21 19:33:41 volonas sshd[21169]: message repeated 5 times: [ Failed password for root from 182.100.67.244 port 8606 ssh2]
Dec 21 19:33:41 volonas sshd[21169]: error: maximum authentication attempts exceeded for root from 182.100.67.244 port 8606 ssh2 [preauth]
Dec 21 19:33:41 volonas sshd[21169]: Disconnecting: Too many authentication failures [preauth]
Dec 21 19:33:41 volonas sshd[21169]: PAM 5 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.100.67.244 user=root
Dec 21 19:33:41 volonas sshd[21169]: PAM service(sshd) ignoring max retries; 6 > 3
Dec 21 19:33:43 volonas sshd[21177]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.100.67.244 user=root
Dec 21 19:33:45 volonas sshd[21177]: Failed password for root from 182.100.67.244 port 45412 ssh2
Àú Á¶Â÷ ·Î±×ÀÎÀÌ ¾ÈµÇ´Ï ¸®ºÙÀ» Çؾ߰ÚÁÒ?
Á÷Á¢ ÀÛ¾÷ÀÌ ¾ÈµÇ´Â ȯ°æÀ̶ó °ÆÁ¤À̳»¿ä. hdmi·Î ¿¬°áµÇ¾îÀִµ¥ ¼³Ä¡ÇÒ‹š´Â ȸéÀÌ Àß ³ª¿À´õ´Ï
¼³Ä¡ ÀÌÈÄ¿¡´Â ¸ÞÀκ¸µå ·Î°í³ª¿À°í ºÎÆà ´Ü°è¿¡¼´Â ȸéÀÌ °ËÀº»öÀ¸·Î Ãâ·ÂÀÌ ¾ÈµÇ¼ sshÁ¢¼ÓÇؼ ÀÌ¿ëÇß¾ú°Åµç¿ä. (À̹®Á¦µµ ÇØ°áÇϱä Çؾ߰ٳ»¿ä)
host.deny host.allow ¼öÁ¤Çؼ Àӽ÷ΠÀÛ¾÷ÇغÁ¾ß°Ù³»¿ä. µÇ¾ß ÇÒÅÙµ¥..
shift ´·¯¼ º¹±¸¸ðµå·Î Á¢¼ÓÇߴµ¥ kernel panic - not syncing vfs unable to mount root fs on unknown-block(0 0) ¹ß»ýÇϳ׿ä.. ´Ù½Ã ¼³Ä¡¸¦ ÇؾßÇϳª.. ¾Æ ¯°³³ð ¤Ð,¤Ð
±âº»ÀÔ´Ï´Ù
¹ø°Å·Î¿ì½Ã´Ù¸é
»ó´Ü¿¡ ¹æȺ® µÎ½Ã¸é µÇ±ä ÇÕ´Ï´Ù
»õ·Î ¸¶À½¸Ô°í ¸ÂÃápc ¸®´ª½º ¼³Ä¡ ÇϷ縸¿¡? ÀÌ·± Ȳ´çÇÑ °ø°ÝÀ» ´çÇغ¸³×¿ä..
±×³É ipÅ×ÀÌºí¿¡¼ Áß±¹ip ÀÚü¸¦ ¸·¾Æ¹ö·Á¾ß°Ú½À´Ï´Ù. ¹°·Ð Æ÷Æ®µµ.. ¹Ù²Ù°í¿ä ¤¾¤¾¤¾;;
ÄðÇÏ°Ô Ä¿³Î ¿À·ù¶á°Å º¸°í À缳ġ ÇÏ¿´½À´Ï´Ù ¤Ð_¤Ð)
¸®´ª½º ¼³Ä¡ÈÄ ºÎÆýà °ËÀº ȸ鸸 ³ª¿À°í È¸é ¾È³ª¿À´Â Áõ»óÀº
grub ¼öÁ¤À¸·Î ÇØ°áÇÏ¿´½À´Ï´Ù. Âü°íÇÑ °Ô½Ã±Û ¹ÚÁ¦ÇÏ¿© ³²°Ü ³õ½À´Ï´Ù. http://archive.is/e8jau
Áß±¹ip ºÎÅÍ ¸·¾Æ³õ°í ÀÛ¾÷Çؾ߰ڳ»¿ä ¤Ð,¤Ð!
±×°Ô ¾Æ´Ï¶ó¸é fail2banÀ» ¼³Ä¡Çؼ ¹æ¾îÇÏ´Â °Íµµ ¹æ¹ýÀÔ´Ï´Ù
»õ·Î ¸¶À½¸Ô°í ¸ÂÃápc ¸®´ª½º ¼³Ä¡ ÇϷ縸¿¡? ÀÌ·± Ȳ´çÇÑ °ø°ÝÀ» ´çÇغ¸³×¿ä..
±×³É ipÅ×ÀÌºí¿¡¼ Áß±¹ip ÀÚü¸¦ ¸·¾Æ¹ö·Á¾ß°Ú½À´Ï´Ù. ¹°·Ð Æ÷Æ®µµ.. ¹Ù²Ù°í¿ä ¤¾¤¾¤¾;;
¾Ë·ÁÁֽŠ°Íµµ °Ë»öÁ» ÇغÁ¾ß°Ú³»¿ä. Á¤º¸ °¨»çÇÕ´Ï´Ù.!!
À̶§Ã³·³ ·ÎÄÿ¡¼ Á¶Â÷ ·Î±×ÀÎ ¾ÈµÉÁ¤µµ·Î Àå¾Ö¸¦ °Þ¾ú´ø ÀûÀÌ ¾ø¾î¼...
ÀÌ°Ô ÀÚµ¿º¿À¸·Î °ø°ÝÇÑ°Å °°Àºµ¥ ´ç½Ã¿¡ °øÀ¯±â ¼ÂÆÃÇÏ°í ÇÏ´À¶ó ip°¡ Á» ¾ÕÀÚ¸® ¹øÈ£´ë ÀâÇû´ø°Ô Ÿ°ÙÀÌ µÈ ¿øÀÎÀÌ ¾Æ´Ï¾ú³ª ¿¹»óÇÕ´Ï´Ù.
Áö±ÝÀº Áß±¹ÂÊip Â÷´ÜÇÏ°í ipµµ ´Ù½Ã 200¹ø´ë ¹øÈ£·Î °¡°í Æ÷Æ®µµ À̹ø °æÇè»ï¾Æ º¯°æÇÏ¿´°í¿ä... ¾ÆÁÖ Á¶¿ëÇϳ»¿ä..
¾ÕÀ¸·Î´Â Á» ´õ ½Å°æÀ» ½á¾ß°Ú½À´Ï´Ù ¤Ð¤Ð