21-02-2008, 11:38:26
|
 | | | Diyarbakır Şubesi Nerden: İzmir
Mesajlar: 234
Thanks: 0
Thanked 0 Times in 0 Posts
Rep puanı:
9
| |
Alıntı: #!/bin/bash
################################################## ######
# SYN flood paketleri durduracak sekilde tasarlanmistir.
# DoLuyuZ Networks *inTeL*
################################################## ######
rm -rf /root/SYN-IPLER
netstat -ntu | grep SYN | awk '{print $5}'| cut -d: -f1 | sort | uniq -c | sort -n | grep -v 127.0.0.1 | grep -v IP-ADRESIN | awk '{if ($1 > 2) print $2;}' > /root/SYN-IPLER
while read ipler; do /sbin/iptables -A INPUT -s $ipler -j DROP ; /sbin/iptables -A INPUT -d $ipler -j DROP ; echo IP Blocked $ipler ; done < /root/SYN-IPLER
service httpd restart | Bu Kodu /usr/bin/dosyaadi olarak kaydet ve chmod +x /usr/bin/dosyaadi yaparsın
ardından ssh ta
dosyaadi
yazınca saldırı ip lerini banlar ve httpd e restart atar  |