linux 防暴力破解

#!/bin/bash
SCANIP=`grep "Failed" /var/log/secure* | awk '{print $(NF-3)}'| sort |uniq -c | awk '{print $1":"$2}' |awk -F: '$1 >= 50 {print $2}'`
for i in $SCANIP
do
if [ -z "`iptables -vnL INPUT | grep $i`" ];then
iptables -I INPUT -s $i -j DROP
fi
done

posted @ 2017-12-19 09:04  一只宅男的自我修养  阅读(494)  评论(0编辑  收藏  举报