{"id":1756,"date":"2011-02-25T19:09:45","date_gmt":"2011-02-25T10:09:45","guid":{"rendered":"http:\/\/mk.miko.jp\/blog\/?p=1756"},"modified":"2011-03-09T07:13:21","modified_gmt":"2011-03-08T22:13:21","slug":"ssh%e3%82%af%e3%83%a9%e3%82%a4%e3%82%a2%e3%83%b3%e3%83%88%e3%81%ae%e6%8e%a5%e7%b6%9a%e5%85%83%e3%82%92%e5%8d%8a%e8%87%aa%e5%8b%95%e7%9a%84%e3%81%ab%e3%83%9b%e3%83%af%e3%82%a4%e3%83%88%e3%83%aa","status":"publish","type":"post","link":"http:\/\/mk.miko.jp\/blog\/archives\/1756","title":{"rendered":"SSH\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u306e\u63a5\u7d9a\u5143\u3092\u534a\u81ea\u52d5\u7684\u306b\u30db\u30ef\u30a4\u30c8\u30ea\u30b9\u30c8\u767b\u9332\u3057\u3066\u307f\u308b"},"content":{"rendered":"<p>\u3000\u307e\u3042\u3001Fail2ban\u306e\u8a71\u306e\u7d9a\u304d\u3067\u3059\u306a\u3002\u300c\u5b8c\u7d50\u7de8\u306e\u7d9a\u7de8\u3068\u304b\u666e\u901a\u51fa\u308b\u3060\u308d\u300d\u3068\u3044\u3046\u5b87\u5b99\u6226\u8266\u7684\u601d\u60f3\u3067\u3002<br \/>\n\u3000\u3064\u3063\u3066\u3082\u5927\u3057\u305f\u8a71\u3058\u3083\u306a\u3044\u3093\u3060\u3051\u3069\u3002\u30db\u30ef\u30a4\u30c8\u30ea\u30b9\u30c8\u306b\u8ffd\u52a0\u3059\u308b\u30b9\u30af\u30ea\u30d7\u30c8\u3092\u66f8\u3044\u3066\u307f\u305f\u3001\u3068\u3044\u3046\u3060\u3051\u3002\u8272\u3005\u5207\u308a\u8a70\u3081\u3066\u629c\u304d\u51fa\u3059\u3068\u3053\u3093\u306a\u611f\u3058\u3002<\/p>\n<pre class=\"brush:py\">#!\/usr\/bin\/python\r\nimport os\r\nimport commands\r\n\r\nssh_client_address = os.environ['SSH_CLIENT'].split()[0]\r\n\r\ndef regist_fail2ban():\r\n    ignore = commands.getoutput('fail2ban-client get fail2ban ignoreip')\r\n    ignore_list = [x.split()[-1] for x in ignore.splitlines()[1:]]\r\n    if ssh_client_address in ignore_list:\r\n        print 'Already ignored.'\r\n    else:\r\n        os.system('fail2ban-client set fail2ban addignoreip ' + ssh_client_address)\r\n\r\ndef main():\r\n    regist_fail2ban()\r\n\r\nif __name__ == '__main__':\r\n    main()<\/pre>\n<p>\u3000\u9069\u5f53\u306b\u95a2\u6570\u3092\u5897\u3084\u305b\u3070\u3001iptables\u3068\u304b\u306b\u3082\u5fdc\u7528\u51fa\u6765\u308b\u304b\u306a\u3002\u9593\u9055\u3063\u3066ssh\u3058\u3083\u306a\u3044\u30b7\u30a7\u30eb\u3067\u4f7f\u3063\u3066\u3082\u3001os.environ\u306e\u3068\u3053\u3067KeyError\u4f8b\u5916\u8cb0\u3063\u3066\u5373\u7d42\u4e86\u306a\u306e\u3067\u554f\u984c\u7121\u3057\u3002<br \/>\n\u3000\u3053\u3044\u3064\u3092\u9069\u5f53\u306b\u5b9f\u884c\u6a29\u9650\u6301\u305f\u305b\u3066\u304a\u3044\u3066\u3001ssh\u3067\u30ed\u30b0\u30a4\u30f3\u3057\u305f\u3089\u5b9f\u884c\u3057\u3066\u304a\u304f\u3001\u307f\u305f\u3044\u306a\u4f7f\u3044\u65b9\u3092\u60f3\u5b9a\u3057\u305f\u611f\u3058\u3060\u3051\u3069\u3001\u3082\u3063\u3068\u4fbf\u5229\u306b\u306a\u308b\u624b\u6cd5\u306f\u3044\u304f\u3089\u3067\u3082\u3042\u308a\u305d\u3046\u3060\u3002Web UI\u3068\u304b\u3001DDNS\u3068cron\u306e\u7d44\u307f\u5408\u308f\u305b\u3068\u304b\u3002\u4f5c\u308b\u306e\u3081\u3093\u3069\u3044\u3051\u3069\u3002DDNS\u306f\u65e2\u306b\u5bfe\u5fdc\u3057\u3066\u308b\u4eba\u306a\u3089\u4e00\u756a\u7c21\u5358\u3060\u308d\u3046\u3051\u3069\u306a\u3042\u3002<\/p>\n<p>\u8ffd\u8a18:<br \/>\n\u3000\u30a2\u30c9\u30ec\u30b9\u304c\u5909\u308f\u3063\u305f\u6642\u306b\u65e7\u30a2\u30c9\u30ec\u30b9\u306e\u767b\u9332\u62b9\u6d88\u306a\u3069\u306e\u51e6\u7406\u306f\u3057\u306a\u3044\u306e\u3067\u3001\u771f\u9762\u76ee\u306b\u6c17\u306b\u306a\u3063\u3066\u304d\u305f\u3089\u4fee\u6b63\u3059\u308b\u304b\u3082\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u3000\u307e\u3042\u3001Fail2ban\u306e\u8a71\u306e\u7d9a\u304d\u3067\u3059\u306a\u3002\u300c\u5b8c\u7d50\u7de8\u306e\u7d9a\u7de8\u3068\u304b\u666e\u901a\u51fa\u308b\u3060\u308d\u300d\u3068\u3044\u3046\u5b87\u5b99\u6226\u8266\u7684\u601d\u60f3\u3067\u3002 \u3000\u3064\u3063\u3066\u3082\u5927\u3057\u305f\u8a71\u3058\u3083\u306a\u3044\u3093\u3060\u3051\u3069\u3002\u30db\u30ef\u30a4\u30c8\u30ea\u30b9\u30c8\u306b\u8ffd\u52a0\u3059\u308b\u30b9\u30af\u30ea\u30d7\u30c8\u3092\u66f8\u3044\u3066\u307f\u305f\u3001\u3068\u3044\u3046\u3060\u3051\u3002\u8272\u3005\u5207\u308a\u8a70\u3081\u3066\u629c\u304d\u51fa\u3059\u3068 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[4],"tags":[],"_links":{"self":[{"href":"http:\/\/mk.miko.jp\/blog\/wp-json\/wp\/v2\/posts\/1756"}],"collection":[{"href":"http:\/\/mk.miko.jp\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/mk.miko.jp\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/mk.miko.jp\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/mk.miko.jp\/blog\/wp-json\/wp\/v2\/comments?post=1756"}],"version-history":[{"count":0,"href":"http:\/\/mk.miko.jp\/blog\/wp-json\/wp\/v2\/posts\/1756\/revisions"}],"wp:attachment":[{"href":"http:\/\/mk.miko.jp\/blog\/wp-json\/wp\/v2\/media?parent=1756"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/mk.miko.jp\/blog\/wp-json\/wp\/v2\/categories?post=1756"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/mk.miko.jp\/blog\/wp-json\/wp\/v2\/tags?post=1756"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}