Yadda ake saita Banner Gargaɗi na SSH da MOTD a cikin Linux
Gargadin banner na SSH yana da mahimmanci lokacin da kamfanoni ko ƙungiyoyi ke son nuna tsattsauran gargaɗi don hana ɓangarori marasa izini shiga sabar.
Ana nuna waɗannan gargaɗin kafin buɗe kalmar sirri ta yadda masu amfani marasa izini waɗanda ke shirin shiga su san illar yin hakan. Yawanci, waɗannan gargaɗin ɓangarorin doka ne waɗanda masu amfani mara izini za su iya wahala idan sun yanke shawarar ci gaba da shiga sabar.
A shawarce ku cewa gargaɗin banner ba wata hanya ba ce ta hana masu amfani da ba su izini shiga ba. Tutar gargaɗi kawai gargaɗi ne da ke nufin hana ɓangarori mara izini shiga. Idan kuna son toshe masu amfani mara izini shiga, to ƙarin SSH ana buƙatar daidaitawa.
[Za ku iya kuma son: Yadda ake Aminta da Harden OpenSSH Server]
Wannan ya ce, bari mu duba yadda za ku iya saita banner na gargaɗin SSH na al'ada.
Mataki 1: Sanya Banner Gargaɗi na SSH
Don farawa, sami dama ga /etc/ssh/sshd_config SSH fayil ɗin daidaitawa ta amfani da editan rubutu da kuka fi so. Anan, muna amfani da editan rubutu na vim.
$ sudo vim /etc/ssh/sshd_config
Nemo umarnin Banner kamar yadda aka nuna. Anan muna buƙatar ƙayyade hanyar zuwa fayil ɗin da zai ƙunshi gargaɗin al'ada na SSH.
Ba da amsa kuma saka fayil na al'ada inda za ku ayyana banner ɗin gargadi na al'ada. A cikin yanayinmu, wannan zai zama fayil ɗin /etc/mybanner.
Banner /etc/mybanner
Ajiye canje-canje kuma fita fayil.
Mataki 2: Ƙirƙiri Banner Gargaɗi na SSH
Mataki na gaba shine ƙirƙirar fayil ɗin da za mu ayyana banner na al'ada. Wannan shine fayil ɗin /etc/mybanner wanda muka ayyana a matakinmu na baya.
$ sudo vim /etc/mybanner
Manna banner da aka nuna. Jin kyauta don gyara shi zuwa abin da kuke so.
------------------------------------------------------------ ------------------------------------------------------------ Authorized access only! If you are not authorized to access or use this system, disconnect now! ------------------------------------------------------------ ------------------------------------------------------------
Ajiye kuma fita fayil ɗin.
Don amfani da canje-canje, sake kunna sabis na SSH:
$ sudo systemctl restart sshd
Mataki 3: Gwada Banner Gargaɗi na SSH
Don gwada banner ɗinmu, za mu gwada shiga cikin uwar garken nesa. Kamar yadda kuke gani, ana nuna banner ɗin gargaɗi kafin kalmar wucewa ta faɗakar da masu amfani mara izini daga shiga.
$ ssh [email
Mataki 4: Saita Banner MOTD
Idan kuna son saita banner MOTD (Saƙon Ranar) bayan shiga, gyara fayil ɗin /etc/motd.
$ sudo vim /etc/motd
Sannan saka sakon MOTD na ku. Don yanayinmu, mun ƙirƙiri fasahar ASCII na al'ada.
_____ _ _ |_ _| (_) | | | | ___ ___ _ __ ___ _ _ __ | |_ | |/ _ \/ __| '_ ` _ \| | '_ \| __| | | __/ (__| | | | | | | | | | |_ \_/\___|\___|_| |_| |_|_|_| |_|\__|
Ajiye kuma, sake kunna sabis na SSH.
$ sudo systemctl restart sshd
Ana nuna MOTD daidai bayan ka shiga kamar yadda aka kwatanta a ƙasa.
Kuma shi ke nan. Muna fata yanzu za ku iya saita tutar gargaɗin SSH na al'ada akan sabar ku don gargaɗi masu amfani mara izini daga shiga tsarin.