Debian on Net Boy

Debian vim滑鼠右鍵無法使用解決

Mon, 09 Dec 2024 17:39:44 +0800

Debian中通過終端使用vim，滑鼠無法使用右鍵的復制粘貼等功能，這是由於vim的一向默認配置導致，按照下面方法修改即可。

解決方法

 vi /usr/share/vim/vim*/defaults.vim
....
 80 if has('mouse')
 81   if &term =~ 'xterm'
 82     set mouse-=a
 83   else
 84     set mouse=nvi
 85   endif
 86 endif
...

說明

mouse 選型默認爲 a，相關說明如下：

The mouse can be enabled for different modes:
n Normal mode
v Visual mode
i Insert mode
c Command-line mode
h all previous modes when editing a help file
a all previous modes
r for |hit-enter| and |more-prompt| prompt
Normally you would enable the mouse in all four modes with:
:set mouse=a

When the mouse is not enabled, the GUI will still use the mouse for
modeless selection. This doesn't move the text cursor.

Debian 12 部署Fail2ban保護SSH

Wed, 06 Nov 2024 22:52:04 +0800

Environment

OS Version： Debian GNU/Linux 12 (bookworm)
Fail2ban-Server： 1.0.2
Python： 3.11.2

Install Fail2ban

apt install fail2ban

Configure Rule

nano /etc/fail2ban/jail.d/defaults-debian.conf

[DEFAULT]
# 用於指定忽略的ip地址， fail2ban 防御,以空格間隔。
ignoreip = 127.0.0.1/8
# ssh客戶端被禁止的時長（默認單位爲：秒）
bantime  = 86400
# 過濾的時長（秒）
findtime  = 600
# 匹配到的閥值（允許失敗的次數）
maxretry = 3
 
 
[ssh-iptables]
# 是否開啓
enabled  = true
# 過濾規則
port = 22
filter = sshd
# debian日志路徑
logpath = /var/log/auth.log
# centos7日志文件路徑
#logpath  = /var/log/secure
# 匹配到的閥值（允許失敗的次數）
maxretry = 4

Install Rsyslog

Debian 12 默認沒有安裝rsyslog，因fail2ban需要依賴rsyslog來做處理，所以我們這裏需要在debian12 中安裝rsyslog。

Debian12更換apt源

Tue, 01 Oct 2024 17:41:25 +0800

備份

cp /etc/apt/sources.list /etc/apt/sources.list.bak

更換

sudo nano /etc/apt/sources.list
# Official Debian 12 (Bookworm) Repositories
deb http://deb.debian.org/debian/ bookworm main contrib non-free
deb-src http://deb.debian.org/debian/ bookworm main contrib non-free

# Security Updates
deb http://security.debian.org/debian-security bookworm-security main contrib non-free
deb-src http://security.debian.org/debian-security bookworm-security main contrib non-free

# Updates
deb http://deb.debian.org/debian/ bookworm-updates main contrib non-free
deb-src http://deb.debian.org/debian/ bookworm-updates main contrib non-free

更新

apt update
apt upgrade

常用源

香港理工大學

deb http://ftp.polyu.edu.hk/pub/Linux/debian/ bookworm main contrib non-free
deb-src http://ftp.polyu.edu.hk/pub/Linux/debian/ bookworm main contrib non-free

deb http://ftp.polyu.edu.hk/pub/Linux/debian-security bookworm-security main contrib non-free
deb-src http://ftp.polyu.edu.hk/pub/Linux/debian-security bookworm-security main contrib non-free

deb http://ftp.polyu.edu.hk/pub/Linux/debian/ bookworm-updates main contrib non-free
deb-src http://ftp.polyu.edu.hk/pub/Linux/debian/ bookworm-updates main contrib non-free

臺灣清華大學

deb https://mirrors.tuna.tsinghua.edu.cn/debian/ bookworm main non-free non-free-firmware contrib
deb-src https://mirrors.tuna.tsinghua.edu.cn/debian/ bookworm main non-free non-free-firmware contrib

deb https://mirrors.tuna.tsinghua.edu.cn/debian-security/ bookworm-security main
deb-src https://mirrors.tuna.tsinghua.edu.cn/debian-security/ bookworm-security main

deb https://mirrors.tuna.tsinghua.edu.cn/debian/ bookworm-updates main non-free non-free-firmware contrib
deb-src https://mirrors.tuna.tsinghua.edu.cn/debian/ bookworm-updates main non-free non-free-firmware contrib

新加坡NUS

deb http://mirror.nus.edu.sg/debian/ bookworm main contrib non-free
deb-src http://mirror.nus.edu.sg/debian/ bookworm main contrib non-free

deb http://mirror.nus.edu.sg/debian-security/ bookworm-security main
deb-src http://mirror.nus.edu.sg/debian-security/ bookworm-security main

deb http://mirror.nus.edu.sg/debian/ bookworm-updates main contrib non-free
deb-src http://mirror.nus.edu.sg/debian/ bookworm-updates main contrib non-free

阿裏雲

deb https://mirrors.aliyun.com/debian/ bookworm main non-free non-free-firmware contrib
deb-src https://mirrors.aliyun.com/debian/ bookworm main non-free non-free-firmware contrib
deb https://mirrors.aliyun.com/debian-security/ bookworm-security main
deb-src https://mirrors.aliyun.com/debian-security/ bookworm-security main
deb https://mirrors.aliyun.com/debian/ bookworm-updates main non-free non-free-firmware contrib
deb-src https://mirrors.aliyun.com/debian/ bookworm-updates main non-free non-free-firmware contrib
deb https://mirrors.aliyun.com/debian/ bookworm-backports main non-free non-free-firmware contrib
deb-src https://mirrors.aliyun.com/debian/ bookworm-backports main non-free non-free-firmware contrib

清華大學

deb https://mirrors.tuna.tsinghua.edu.cn/debian/ bookworm main non-free non-free-firmware contrib
deb-src https://mirrors.tuna.tsinghua.edu.cn/debian/ bookworm main non-free non-free-firmware contrib
deb https://mirrors.tuna.tsinghua.edu.cn/debian-security/ bookworm-security main
deb-src https://mirrors.tuna.tsinghua.edu.cn/debian-security/ bookworm-security main
deb https://mirrors.tuna.tsinghua.edu.cn/debian/ bookworm-updates main non-free non-free-firmware contrib
deb-src https://mirrors.tuna.tsinghua.edu.cn/debian/ bookworm-updates main non-free non-free-firmware contrib
deb https://mirrors.tuna.tsinghua.edu.cn/debian/ bookworm-backports main non-free non-free-firmware contrib
deb-src https://mirrors.tuna.tsinghua.edu.cn/debian/ bookworm-backports main non-free non-free-firmware contrib

Debian安裝ClamAV病毒掃描工具

Tue, 12 Mar 2024 17:36:15 +0800

安裝

## Debian
sudo apt-get update
sudo apt-get install clamav clamav-daemon

## Centos
sudo yum install epel-release
sudo yum install clamav clamav-update

配置

# 如果日志文件不存在的話，需要手動創建。

sudo touch /var/log/clamav/freshclam.log
sudo chown clamav:clamav /var/log/clamav/freshclam.log
sudo chmod 644 /var/log/clamav/freshclam.log

使用

安裝之後，需要重啓一下機器，否則啓動服務不生效（至少我操作的時候是這樣的）。

啓動服務

sudo systemctl start clamav-daemon
# 或者
sudo systemctl restart clamav-daemon

查看服務狀態

root@debian:/home/ghost#  systemctl status clamav-daemon
● clamav-daemon.service - Clam AntiVirus userspace daemon
     Loaded: loaded (/lib/systemd/system/clamav-daemon.service; enabled; preset: enabled)
    Drop-In: /etc/systemd/system/clamav-daemon.service.d
             └─extend.conf
     Active: active (running) since Wed 2024-12-18 00:27:03 EST; 2min 27s ago
TriggeredBy: ● clamav-daemon.socket
       Docs: man:clamd(8)
             man:clamd.conf(5)
             https://docs.clamav.net/
    Process: 823 ExecStartPre=/bin/mkdir -p /run/clamav (code=exited, status=0/SUCCESS)
    Process: 830 ExecStartPre=/bin/chown clamav /run/clamav (code=exited, status=0/SUCCESS)
   Main PID: 831 (clamd)
      Tasks: 2 (limit: 2264)
     Memory: 1.5G
        CPU: 12.447s
     CGroup: /system.slice/clamav-daemon.service
             └─831 /usr/sbin/clamd --foreground=true

Dec 18 00:27:16 debian clamd[831]: Wed Dec 18 00:27:16 2024 -> Portable Executable support enabled.
Dec 18 00:27:16 debian clamd[831]: Wed Dec 18 00:27:16 2024 -> ELF support enabled.
Dec 18 00:27:16 debian clamd[831]: Wed Dec 18 00:27:16 2024 -> Mail files support enabled.
Dec 18 00:27:16 debian clamd[831]: Wed Dec 18 00:27:16 2024 -> OLE2 support enabled.

更新病毒庫

root@debian:/home/ghost# freshclam
Wed Dec 18 00:29:38 2024 -> ClamAV update process started at Wed Dec 18 00:29:38 2024
Wed Dec 18 00:29:38 2024 -> daily.cld database is up-to-date (version: 27490, sigs: 2070490, f-level: 90, builder: raynman)
Wed Dec 18 00:29:38 2024 -> main.cvd database is up-to-date (version: 62, sigs: 6647427, f-level: 90, builder: sigmgr)
Wed Dec 18 00:29:38 2024 -> bytecode.cvd database is up-to-date (version: 335, sigs: 86, f-level: 90, builder: raynman)xxxxxxxxxx6 1更新 Cla•mAV 的病毒數據庫root@debian:/home/ghost# freshclam2Wed Dec 18 00:29:38 2024 -> ClamAV update process started at Wed Dec 18 00:29:38 20243Wed Dec 18 00:29:38 2024 -> daily.cld database is up-to-date (version: 27490, sigs: 2070490, f-level: 90, builder: raynman)4Wed Dec 18 00:29:38 2024 -> main.cvd database is up-to-date (version: 62, sigs: 6647427, f-level: 90, builder: sigmgr)5Wed Dec 18 00:29:38 2024 -> bytecode.cvd database is up-to-date (version: 335, sigs: 86, f-level: 90, builder: raynman)6

常用命令

掃描單個文件

語法：clamscan /path/to/your/file
root@debian:/home/ghost# clamscan /etc/passwd
Loading:    15s, ETA:   0s [========================>]    8.70M/8.70M sigs       
Compiling:   6s, ETA:   0s [========================>]       41/41 tasks 

/etc/passwd: OK

----------- SCAN SUMMARY -----------
Known viruses: 8702280
Engine version: 1.0.7
Scanned directories: 0
Scanned files: 1
Infected files: 0
Data scanned: 0.00 MB
Data read: 0.00 MB (ratio 0.00:1)
Time: 22.179 sec (0 m 22 s)
Start Date: 2024:12:18 00:37:07
End Date:   2024:12:18 00:37:29

掃描整個目錄

clamscan -r /path/to/directory

自動刪除檢測到的病毒

clamscan --remove -r /path/to/directory

掃描結果生成報告

clamscan -r /path/to/directory > scanreport.txt

顯示掃描到的病毒信息

clamscan -r --bell -i /path/to/directory

clamdscan

clamdscan 是 ClamAV 防病毒服务器 clamd 的客户端，用于与后台持续运行并加载病毒数据库的 clamd 进行交互以执行病毒扫描，使得频繁或大规模的扫描任务更加高效。