¾È³çÇϼ¼¿ä.
´ç¿¬È÷ ¿äÁò Áý¿¡ NAS³ª Ȩ¼¹ö Çϳª¾¿Àº ´Ù ÀÖÀ¸½ÃÁÒ? :)
¼¹ö³ª NAS ±¸Ãà½Ã Á¦ÀÏ °ÆÁ¤µÇ´Â°Ç ´ç¿¬È÷ µ·!
´ÙÀ½Àº Àü±â¼¼!
±× ´ÙÀ½ÀÌ º¸¾ÈÀÌ ¾Æ´Ò±î ÇÕ´Ï´Ù.
°ø°³µµ ÇÏÁö ¾Ê°í È¥ÀÚ¸¸ ¼¹ö¿¡ ¿Ö À̸® ÀαⰡ ¸¹Àº°ÇÁö..
ÀÔÁÖÇØ ÀÖ´Â ¾Æ°¡¾¾µµ ¾ø´Âµ¥..(ÀÀ? ·¹¾Ë?)
Áý¹Û¿¡¼µµ ÅÚ³ÝÀ¸·Î ÆÄÀÏ°ü¸®µî ÀÛ¾÷À» Çϱ⶧¹®¿¡ ÇÊ¿äÆ÷Æ®(ÅÚ³Ý, ftp, mysql µîµî)´Â Ç׽à ¿¾îµÓ´Ï´Ù.
¿°í´Ý±â Çϱ⠱ÍÂú¾Æ¼..
°£´ÜÇÏ°Ô ·Î±× ºÐ¼® ¹× ºÒû°´ Â÷´ÜÇÏ´Â ¹ýÀ» ¾ó·Áµå¸®°íÀÚ ÇÕ´Ï´Ù.
1. ·Î±×ºÐ¼®(¿ìºÐÅõ ±âÁØ)
. /var/auth.log ÆÄÀÏÀ» º¸½Ã¸é Á¢¼Ó±â·ÏÀ» º¸½Ç¼ö ÀÖ½À´Ï´Ù.
. ·Î±×¸¦ º¸½Ã°Ô µÇ¸é Á¢¼Ó¼º°ø ȤÀº ½ÇÆÐ, root ¼¼¼ÇÀÌ ¿·È´ÂÁö¸¦ È®ÀÎÇϽǼö ÀÖ½À´Ï´Ù.
. Failed password for root from 61.147.74.223 port 9137 ssh2 <= ÇØ´ç±â·ÏÀº 12¿ù 10ÀÏ 14½Ã 30ºÐ¿¡ Á¢¼Ó½Ãµµ¸¦ ÇÑ ip ÀÔ´Ï´Ù. whois·Î °Ë»öÇغ¸´Ï (»ý°¢´ë·Î) Áß±¹ºÐ²²¼ Á¢¼ÓÇϼ̱º¿ä.
. Å͹̳ο¡¼ tail -f /var/auth.log ¸¦ ÀÔ·ÂÇÏ½Ã¸é ½Ç½Ã°£À¸·Î ½×ÀÌ´Â ·Î±×¸¦ º¸½Ç ¼ö ÀÖ½À´Ï´Ù. Àú´Â Äѳõ°í ipÂ÷´Ü ¸®½ºÆ®¸¦ Á¤¸®ÇÏÁÒ.
2. ƯÁ¤ip Á¢¼ÓÂ÷´Ü
. route(¿ìºÐÅõ ±âº») ¶ó´Â ¸í·É¾î¸¦ ÀÌ¿ëÇÏ¿© ÀÛ¼ºÇÕ´Ï´Ù.
. Â÷´Ü ip ÀÔ·Â -> route add -host µµ¸ÞÀÎ(ip) reject ¿¹)route add -host 61.147.74.223 reject
. Â÷´ÜÇØÁ¦ -> route del -host µµ¸ÞÀÎ(ip) reject
. ¸ñ·Ïº¸±â -> route
ÇöÀç ÀúÀÇ Â÷´Ü ¸ñ·ÏÀÔ´Ï´Ù.
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
61.147.70.2 - 255.255.255.255 !H 0 - 0 -
61.147.74.223 - 255.255.255.255 !H 0 - 0 -
61.160.215.174 - 255.255.255.255 !H 0 - 0 -
kino-boss.ru - 255.255.255.255 !H 0 - 0 -
115.182.62.208 - 255.255.255.255 !H 0 - 0 -
116.34.4.0 * 255.255.255.0 U 1 0 0 eth0
117.41.187.145 - 255.255.255.255 !H 0 - 0 -
117.239.87.242 - 255.255.255.255 !H 0 - 0 -
121.10.104.245 - 255.255.255.255 !H 0 - 0 -
unassigned.psyc - 255.255.255.255 !H 0 - 0 -
203.201.42.237 - 255.255.255.255 !H 0 - 0 -
210.51.10.158 - 255.255.255.255 !H 0 - 0 -
mail.grieger.de - 255.255.255.255 !H 0 - 0 -
ow-jbr-webserve - 255.255.255.255 !H 0 - 0 -
218.6.12.157 - 255.255.255.255 !H 0 - 0
ƯÈ÷ 94.127.68.48 ÀÌ ip´Â 10ÀÏ »õº®1½ÃºÎÅÍ ¹«·Á 2½Ã°£ 30ºÐµ¿¾È ¸ðµç Æ÷Æ®¸¦ ²Ä²ÄÈ÷ »ìÆ캸¼Ì´õ¶ó±¸¿ä.
º¸¾È¿¡ °ü½ÉÀÌ ¸¹À¸½Ã´Ù¸é °Ë»öÇϽÿ© ´õ ÁÁÀº ¹æ¹ý, ÇÁ·Î±×·¥ÀÌ ÀÖÀ»Áöµµ ¸ð¸£´Ï Çѹø ¾Ë¾Æº¸½Ã°í..
Àú´Â ±ÍÂ÷´ÏÁò¿¡ Àú ¹æ¹ýÀ» »ç¿ëÇÏ°í ÀÖ½À´Ï´Ù.
¸ðµÎ Áñ°Å¿î NAS, ¼¹ö »ýÈ°Çϼ¼¿ä~