阻止服务器未经授权的登录尝试
1、登录服务器后,提示:
Last failed login: time from ip on ssh:notty
There were 90 failed login attempts since the last successful login.
表示要么是被(无差别地)扫到了,要么是有人在盯着你。
2、解决方法:grep "Failed password for invalid user" /var/log/secure | awk '{print $13}' | sort |uniq -c |sort -nr 查询所有登陆失败的ip,将这些ip全部写入到 /etc/hosts.allow文件中,sshd:ip:deny