fakessh

command module

v0.3.4 Latest Latest Go to latest Published: Jul 4, 2024 License: MIT Imports: 31 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/hugefiver/fakessh

Links

Open Source Insights

README ¶

Fake SSH Server

可用
It Does Work
~~开发中~~
~~In Developing~~

Why Write This

长期以来，服务器的22端口始终有人试图爆破，每次登陆都会显示有数百次失败的尝试。

一段时间之前我已经更换为密钥登陆（建议停止口令登陆SSH而使用密钥，尤其是您正在遭受穷举的情况下），可以说是基本没有被穷尽成功的可能，但是看着log里的记录还是很烦。

即便使用了fail2ban仍收效甚微，即使在每次登录失败即封禁IP一周的情况下，本月仍有千余条IP的登陆失败记录。

虽然暂时通过更换端口的方式缓解了这样的现象，但仍不能保证以后新的端口不会被爆破。

所以写这个__假的SSH服务器__。首先是迷惑攻击者认为端口仍在正常工作，然而其实是不可能入侵成功的。其次收集访问者的IP和相关信息。最终目的是分析访问者信息，形成封禁策略，可以应用于其他的服务器上。

TODO

configure file
shell for git server
max connections

Configure File

Read this file for information.

CommandLine Usage

  -A    disable anti honeypot scan
  -V    show version of this binary
  -a    enable anti honeypot scan (default)
  -bind addr
        binding addr (default ":22")
  -c path
        config path
  -config path
        config path
  -delay int
        wait time for each login (ms)
  -devia int
        deviation for wait time (ms)
  -format [plain|json]
        log format: [plain|json] (default "plain")
  -gen
        generate a private key to key file path
  -h    show this page
  -help
        show this page
  -key path
        key file path, can set more than one
  -level [debug|info|warning]
        log level: [debug|info|warning] (default "info")
  -log file
        log file
  -passwd
        log password to file
  -r float
        success ratio float percent age (0.0 ~ 100.0, default: 0)
  -seed string
        success seed (any string)
  -try int
        max try times (default 3)
  -type string
        type for generate private key (default "ed25519")
  -version string
        ssh server version (default "OpenSSH_9.3p1")

key option

The general format is type:option, and the option part can leave blank.
Following types is available: ed25519, rsa, ecdsa, default is ed25519 if it's left empty.
If key path is not specialed, you can set multi types, separated with , . For example, rsa | rsa:2048 | ecdsa:P256,rsa | ed25519,ecdsa are all available, but only the first type set is used for generating mode.
Option for rsa is key size, default is 4096.
Option for ecdsa is curve type, such as P256, P384, P521, and default is P384.

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
conf
modules
gitserver
third
ssh Package ssh implements an SSH client and server.	Package ssh implements an SSH client and server.
ssh/agent Package agent implements the ssh-agent protocol, and provides both a client and a server.	Package agent implements the ssh-agent protocol, and provides both a client and a server.
ssh/internal/bcrypt_pbkdf Package bcrypt_pbkdf implements bcrypt_pbkdf(3) from OpenBSD.	Package bcrypt_pbkdf implements bcrypt_pbkdf(3) from OpenBSD.
ssh/internal/testenv
ssh/knownhosts Package knownhosts implements a parser for the OpenSSH known_hosts host key database, and provides utility functions for writing OpenSSH compliant known_hosts files.	Package knownhosts implements a parser for the OpenSSH known_hosts host key database, and provides utility functions for writing OpenSSH compliant known_hosts files.
ssh/terminal Package terminal provides support functions for dealing with terminals, as commonly found on UNIX systems.	Package terminal provides support functions for dealing with terminals, as commonly found on UNIX systems.
ssh/test Package test contains integration tests for the github.com/hugefiver/fakessh/third/ssh package.	Package test contains integration tests for the github.com/hugefiver/fakessh/third/ssh package.
utils

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL