- Mensagem
+ Responder ao Tópico
-
Mensagem
Abri meu mk agora e começou a dar essa msg no terminal o que é isso
Terminal vt102 detected, using multiline input mode
[admin@MikroTik] >
echo: system,error,critical login failure for user share from 87.206.1.122 via ssh
[admin@MikroTik] >
echo: system,error,critical login failure for user group from 87.206.1.122 via ssh
[admin@MikroTik] >
echo: system,error,critical login failure for user groups from 87.206.1.122 via ssh
[admin@MikroTik] >
echo: system,error,critical login failure for user legal from 87.206.1.122 via ssh
[admin@MikroTik] >
echo: system,error,critical login failure for user ethernet from 87.206.1.122 via ssh
[admin@MikroTik] >
echo: system,error,critical login failure for user workstation from 87.206.1.122 via ssh
[admin@MikroTik] >
echo: system,error,critical login failure for user workstations from 87.206.1.122 via ssh
[admin@MikroTik] >
echo: system,error,critical login failure for user ifconfig from 87.206.1.122 via ssh
[admin@MikroTik] >
echo: system,error,critical login failure for user route from 87.206.1.122 via ssh
[admin@MikroTik] >
echo: system,error,critical login failure for user graphic from 87.206.1.122 via ssh
[admin@MikroTik] >
echo: system,error,critical login failure for user graphics from 87.206.1.122 via ssh
-
tentativa de acesso ao seu mikrotik
-
bom va em ip--services --ali no ssh, ou mude a porta, ou desative, ou coloque um ip, para que somente seja acessado daquele ip.
espero que isso lhe tenha sido util,
flw ..
-
dia desses estava 1 bot tentando acessar via ftp, desativei o serviço e o bot continuou tendo contato com o meu server. No dia que essa tentativa de invasão se deu via ssh, eu desativei e funcionou de boa, parou na hora.
-
Encontrado na web. Para quem precisa deixar a porta ssh aberta:
/ip firewall filter
add action=drop chain=input comment="Bloqueio de SSH brute force" disabled=no dst-port=22 protocol=tcp src-address-list=ssh_blacklist
add action=add-src-to-address-list address-list=ssh_blacklist address-list-timeout=1w3d chain=input comment="" connection-state=new disabled=no dst-port=22 \
protocol=tcp src-address-list=ssh_stage3
add action=add-src-to-address-list address-list=ssh_stage3 address-list-timeout=1m chain=input comment="" connection-state=new disabled=no dst-port=22 \
protocol=tcp src-address-list=ssh_stage2
add action=add-src-to-address-list address-list=ssh_stage2 address-list-timeout=1m chain=input comment="" connection-state=new disabled=no dst-port=22 \
protocol=tcp src-address-list=ssh_stage1
add action=add-src-to-address-list address-list=ssh_stage1 address-list-timeout=1m chain=input comment="" connection-state=new disabled=no dst-port=22 \
protocol=tcp