CentOSYUMOpenSSHOpenSSLһ㶨

10Gŷ1G

100Mɼ 32GBڴ ӢضǿCPUؼۣ1699Ԫ/

ݻ100ME3-127032Gڴ/96GڴKVM1399Ԫ/

Ʒ8Gڴ,CPU,4,ؼ699Ԫ/,16Gڴ1299Ԫ

GڿG1000MDDOS(ǿXeon E3 1230)

GڴGڶŷGڶ

ʥKTKTãKT(ؼ799Ԫ/)

ɼٶ֮һ999Ԫ/4Gڴ20M

1Gŷ1GãƵȴվ

˳ǻPhoenix:74I38Gڴ,30M,999Ԫ

SSD VPSãɼSSD VPS,Linux/Windows

ڻVPS˹ά˹VPS˹ά˹ڻݷ

VPSŦԼƷŦԼVPS

VPSƿռ䣬ͶVPSӢ̳VPSSSL֤װ

PsychzֱVPS,ٶVPS,PsychzVPS

CamforgרVPS,CamforgƵVPS,Camforg

VPSɼWebNXVPSWNWindows VPS

ͼVPSͼVPS֧õVPSVPS10Ԫ/

⣬߶VPSʤVPS

Windows VPSDDOSVPSػ޹2ʱڻָ

CentOSYUMOpenSSHOpenSSLһ㶨

ͻϣopensshsslcentosĬϵĿ޷ֱֱʹCentOSYUMOpenSSHOpenSSLһ㶨

OpenSSH_5.5p1, OpenSSL 0.9.8e-fips-rhel5 01 Jul 2008

OpenSSH_5.5p1, OpenSSL 0.9.8e-fips-rhel5 01 Jul 2008

openssh-clients-5.5p1-24.el5.i386 from centalt has depsolving problems

— Missing Dependency: libedit.so.0 is needed by package openssh-clients-5.5p1-24.el5.i386 (centalt)

Error: Missing Dependency: libedit.so.0 is needed by package openssh-clients-5.5p1-24.el5.i386 (centalt)

You could try using –skip-broken to work around the problem

rpm -Uvh /mirror/atrpms.net/el5-i386/atrpms/stable/libedit0-3.0-1.20090722cvs.el5.i386.rpm

rpm -Uvh ftp://ftp.pbone.net/mirror/atrpms.net/el5-x86_64/atrpms/stable/libedit0-3.0-1.20090722cvs.el5.x86_64.rpm

㻹õphp5.1ҲԿűһphp5.2

openssh 75

openssh openssh 5.3 distribution centos 6.x yum openssh 5.3 rpm 6.4 yum localinstall openssh 22 openssh release 7.5

cd /root/ mkdir ssh_upgrade && cd ssh_upgrade

yum install gcc openssl-devel zlib-devel tar zxvf openssh-7.5p1.tar.gz cd openssh-7.5p1 ./configure make && make install

cp it /etc/init.d/sshd chmod +x /etc/init.d/sshd

vim /etc/init.d/sshd SSHD=/usr/sbin/sshd SSHD=/usr/local/sbin/sshd /usr/sbin/ssh-keygen -A /usr/local/bin/ssh-keygen -A

chkconfig –list grep sshd sshd 0:off 1:off 2:on 3:on 4:on 5:on 6:off

cp sshd_config /etc/ssh/sshd_config vim /etc/ssh/sshd_config PermitRootLogin yes,

opensshsshd_configsshd_configroot

1000

OpenSSHLinux

OpenSSH

OpenSSHLinux36

KingCopeOpenSSHFreeBSD Linux

POC:

Linux2

3.(grace period)2030

Here is a patch for openssh-6.9p1 that will allow to use a wordlist and any passwords piped to the ssh process to be used in order to crack passwords remotely.

openssh-6.9p1openssh

cat wordlist.txt ./sshcracker.sh ssh-username ssh-target

rc=$?; if [[ $rc == 0 ]]; then exit $rc; fi

echo Respawn due to login grace time…

cat wordlist.txt ./sshcracker.sh test 192.168.2.173

openssh-6.9psshsshPOCpoc

fail2ban GNU/LinuxOpenSSHtrade-offiptableshitcountOpenSSHjs/ajax

GNU/LinuxOpenSSHtrade-offiptableshitcountOpenSSHjs/ajax

Here is a patch for openssh-6.9p1 that will allow to use a wordlist and any passwords piped to the ssh process to be used in order to crack passwords remotely.

openssh-6.9p1openssh

cat wordlist.txt ./sshcracker.sh ssh-username ssh-target

echo Respawn due to login grace time

cat wordlist.txt ./sshcracker.sh test 192.168.2.173

openssh-6.9psshsshPOCpoc

,ssh6(,).

6.9ssh,ssh.

openssh loop,..

2017.12.15FreeBuf 2018FIT2017.12.15