CN107135235A - 一种多级跳转后的ssh连接源追踪方法及装置 - Google Patents
一种多级跳转后的ssh连接源追踪方法及装置 Download PDFInfo
- Publication number
- CN107135235A CN107135235A CN201710541258.6A CN201710541258A CN107135235A CN 107135235 A CN107135235 A CN 107135235A CN 201710541258 A CN201710541258 A CN 201710541258A CN 107135235 A CN107135235 A CN 107135235A
- Authority
- CN
- China
- Prior art keywords
- connection
- ssh
- information
- client
- father
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 77
- 230000001360 synchronised effect Effects 0.000 claims description 6
- 230000000977 initiatory effect Effects 0.000 claims description 5
- 238000004458 analytical method Methods 0.000 abstract description 11
- 238000012550 audit Methods 0.000 abstract description 10
- 238000013500 data storage Methods 0.000 abstract description 3
- 230000001419 dependent effect Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012544 monitoring process Methods 0.000 description 1
- 239000013589 supplement Substances 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
- H04L63/0485—Networking architectures for enhanced packet encryption processing, e.g. offloading of IPsec packet processing or efficient security association look-up
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/10—Active monitoring, e.g. heartbeat, ping or trace-route
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/16—Implementing security features at a particular protocol layer
- H04L63/168—Implementing security features at a particular protocol layer above the transport layer
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Health & Medical Sciences (AREA)
- Cardiology (AREA)
- General Health & Medical Sciences (AREA)
- Computer And Data Communications (AREA)
Abstract
Description
Claims (10)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710541258.6A CN107135235B (zh) | 2017-07-05 | 2017-07-05 | 一种多级跳转后的ssh连接源追踪方法及装置 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710541258.6A CN107135235B (zh) | 2017-07-05 | 2017-07-05 | 一种多级跳转后的ssh连接源追踪方法及装置 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN107135235A true CN107135235A (zh) | 2017-09-05 |
CN107135235B CN107135235B (zh) | 2019-11-05 |
Family
ID=59737257
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201710541258.6A Active CN107135235B (zh) | 2017-07-05 | 2017-07-05 | 一种多级跳转后的ssh连接源追踪方法及装置 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN107135235B (zh) |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN110933032A (zh) * | 2019-10-25 | 2020-03-27 | 湖南麒麟信安科技有限公司 | 一种ssh路径追踪方法、系统及介质 |
CN112738044A (zh) * | 2020-12-22 | 2021-04-30 | 湖南麒麟信安科技股份有限公司 | 一种多协议链路路径追踪方法及系统 |
CN114866455A (zh) * | 2022-04-18 | 2022-08-05 | 北京凝思软件股份有限公司 | 一种ssh多级跳转路径的构建方法、系统、终端和介质 |
Citations (18)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6408310B1 (en) * | 1999-10-08 | 2002-06-18 | Unisys Corporation | System and method for expediting transfer of sectioned audit files from a primary host to a secondary host |
CN101944167A (zh) * | 2010-09-29 | 2011-01-12 | 中国科学院计算技术研究所 | 识别恶意程序的方法及系统 |
US20110055899A1 (en) * | 2009-08-28 | 2011-03-03 | Uplogix, Inc. | Secure remote management of network devices with local processing and secure shell for remote distribution of information |
CN102215133A (zh) * | 2011-06-21 | 2011-10-12 | 德讯科技股份有限公司 | 基于rdp远程协议跳板机审计数据定位回放系统及方法 |
US20130081112A1 (en) * | 2011-09-26 | 2013-03-28 | Tadhg Kelly | Global Terminal Management Using 2-Factor Authentication |
CN103685233A (zh) * | 2013-11-15 | 2014-03-26 | 中国人民解放军91635部队 | 一种基于Windows内核驱动的木马监测方法 |
CN103825876A (zh) * | 2013-11-07 | 2014-05-28 | 北京安码科技有限公司 | 一种复杂网络环境下的防火墙策略审计系统 |
CN104135389A (zh) * | 2014-08-14 | 2014-11-05 | 华北电力大学句容研究中心 | 一种基于代理技术的ssh协议运维审计系统及方法 |
CN104144087A (zh) * | 2014-06-13 | 2014-11-12 | 国家电网公司 | 一种远程桌面检测系统及其检测方法 |
CN104243419A (zh) * | 2013-06-18 | 2014-12-24 | 腾讯科技(深圳)有限公司 | 基于安全外壳协议的数据处理方法、装置及系统 |
CN104270334A (zh) * | 2014-06-13 | 2015-01-07 | 国家电网公司 | 一种ssh网络安全访问协议监测方法 |
CN104346267A (zh) * | 2013-08-08 | 2015-02-11 | 腾讯科技(深圳)有限公司 | 生成程序缺陷定位信息的方法及装置 |
CN105207829A (zh) * | 2014-06-04 | 2015-12-30 | 腾讯科技(深圳)有限公司 | 一种入侵检测数据处理方法、装置,及系统 |
CN105323088A (zh) * | 2014-07-16 | 2016-02-10 | 中兴通讯股份有限公司 | 跳板处理方法及装置 |
CN105704091A (zh) * | 2014-11-25 | 2016-06-22 | 中国科学院声学研究所 | 一种基于ssh协议的会话解析方法及系统 |
US20160219022A1 (en) * | 2015-01-22 | 2016-07-28 | Dell Products L.P. | Secure shell public key audit system |
CN105978979A (zh) * | 2016-05-17 | 2016-09-28 | 扬州航盛科技有限公司 | 一种linux车载系统异常诊断系统及其诊断方法 |
CN106685896A (zh) * | 2015-11-09 | 2017-05-17 | 中国科学院声学研究所 | 一种ssh协议多层通道内的明文数据采集方法及系统 |
-
2017
- 2017-07-05 CN CN201710541258.6A patent/CN107135235B/zh active Active
Patent Citations (19)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6408310B1 (en) * | 1999-10-08 | 2002-06-18 | Unisys Corporation | System and method for expediting transfer of sectioned audit files from a primary host to a secondary host |
US20110055899A1 (en) * | 2009-08-28 | 2011-03-03 | Uplogix, Inc. | Secure remote management of network devices with local processing and secure shell for remote distribution of information |
CN101944167A (zh) * | 2010-09-29 | 2011-01-12 | 中国科学院计算技术研究所 | 识别恶意程序的方法及系统 |
CN102215133A (zh) * | 2011-06-21 | 2011-10-12 | 德讯科技股份有限公司 | 基于rdp远程协议跳板机审计数据定位回放系统及方法 |
US20130081112A1 (en) * | 2011-09-26 | 2013-03-28 | Tadhg Kelly | Global Terminal Management Using 2-Factor Authentication |
GB2495199A (en) * | 2011-09-26 | 2013-04-03 | Tadhg Kelly | Global terminal management using 2-factor authentication |
CN104243419A (zh) * | 2013-06-18 | 2014-12-24 | 腾讯科技(深圳)有限公司 | 基于安全外壳协议的数据处理方法、装置及系统 |
CN104346267A (zh) * | 2013-08-08 | 2015-02-11 | 腾讯科技(深圳)有限公司 | 生成程序缺陷定位信息的方法及装置 |
CN103825876A (zh) * | 2013-11-07 | 2014-05-28 | 北京安码科技有限公司 | 一种复杂网络环境下的防火墙策略审计系统 |
CN103685233A (zh) * | 2013-11-15 | 2014-03-26 | 中国人民解放军91635部队 | 一种基于Windows内核驱动的木马监测方法 |
CN105207829A (zh) * | 2014-06-04 | 2015-12-30 | 腾讯科技(深圳)有限公司 | 一种入侵检测数据处理方法、装置,及系统 |
CN104144087A (zh) * | 2014-06-13 | 2014-11-12 | 国家电网公司 | 一种远程桌面检测系统及其检测方法 |
CN104270334A (zh) * | 2014-06-13 | 2015-01-07 | 国家电网公司 | 一种ssh网络安全访问协议监测方法 |
CN105323088A (zh) * | 2014-07-16 | 2016-02-10 | 中兴通讯股份有限公司 | 跳板处理方法及装置 |
CN104135389A (zh) * | 2014-08-14 | 2014-11-05 | 华北电力大学句容研究中心 | 一种基于代理技术的ssh协议运维审计系统及方法 |
CN105704091A (zh) * | 2014-11-25 | 2016-06-22 | 中国科学院声学研究所 | 一种基于ssh协议的会话解析方法及系统 |
US20160219022A1 (en) * | 2015-01-22 | 2016-07-28 | Dell Products L.P. | Secure shell public key audit system |
CN106685896A (zh) * | 2015-11-09 | 2017-05-17 | 中国科学院声学研究所 | 一种ssh协议多层通道内的明文数据采集方法及系统 |
CN105978979A (zh) * | 2016-05-17 | 2016-09-28 | 扬州航盛科技有限公司 | 一种linux车载系统异常诊断系统及其诊断方法 |
Non-Patent Citations (2)
Title |
---|
崔文超等: "《SSH协议审计系统的设计与实现》", 《电子技术与软件工程》 * |
张帆: "《基于SSH协议的字符终端会话运维审计的研究与实现》", 《中国优秀硕士学位论文全文数据库(电子期刊)》 * |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN110933032A (zh) * | 2019-10-25 | 2020-03-27 | 湖南麒麟信安科技有限公司 | 一种ssh路径追踪方法、系统及介质 |
CN110933032B (zh) * | 2019-10-25 | 2022-04-05 | 湖南麒麟信安科技股份有限公司 | 一种ssh路径追踪方法、系统及介质 |
CN112738044A (zh) * | 2020-12-22 | 2021-04-30 | 湖南麒麟信安科技股份有限公司 | 一种多协议链路路径追踪方法及系统 |
CN114866455A (zh) * | 2022-04-18 | 2022-08-05 | 北京凝思软件股份有限公司 | 一种ssh多级跳转路径的构建方法、系统、终端和介质 |
Also Published As
Publication number | Publication date |
---|---|
CN107135235B (zh) | 2019-11-05 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN105847023B (zh) | 业务系统网络拓扑关系获取方法及装置 | |
CN107135235A (zh) | 一种多级跳转后的ssh连接源追踪方法及装置 | |
EP1922597A1 (en) | Fault data management | |
CN105224396B (zh) | 一种业务数据处理方法和装置 | |
CN107800565A (zh) | 巡检方法、装置、系统、计算机设备和存储介质 | |
CN109036416A (zh) | 同声传译方法和系统、存储介质及电子装置 | |
Ammar et al. | Autonomous identification of iot device types based on a supervised classification | |
CN104348638B (zh) | 识别会话流量的业务类型的方法、系统及设备 | |
CN106330520A (zh) | 一种终端设备的特征信息的提取方法及装置 | |
CN108733698A (zh) | 一种日志消息的处理方法及后台服务系统 | |
CN106330768B (zh) | 一种基于云计算的应用识别方法 | |
Ammar et al. | Autonomous IoT device identification prototype | |
CN101282362A (zh) | 深度报文检测方法和装置 | |
CN107360062B (zh) | Dpi设备识别结果的验证方法、系统及dpi设备 | |
CN107835253A (zh) | 一种远程数据管控方法及远程数据管控系统 | |
CN109344333A (zh) | 一种互联网大数据分析提取方法及系统 | |
CN106533728A (zh) | 服务器信息收集方法和装置 | |
CN107945797A (zh) | 基于语音识别的监控系统 | |
CN102368747B (zh) | 即时通信中用以提供上线信息的方法及系统 | |
CN103458043B (zh) | 一种信息通讯方法及系统 | |
CN105893209A (zh) | 一种监控方法、装置及系统 | |
CN109120557A (zh) | 一种智能路由器wan口的动态切换方法及系统 | |
CN105052088A (zh) | 网络统计信息提供系统、网络统计信息提供方法和程序 | |
CN109063855A (zh) | 用于车辆车况鉴定的辅助处理方法及装置 | |
CN105227395B (zh) | 一种分布式jvm性能分析的方法、装置及系统 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
PE01 | Entry into force of the registration of the contract for pledge of patent right |
Denomination of invention: An SSH connection source tracing method and device after multi level jump Effective date of registration: 20200827 Granted publication date: 20191105 Pledgee: Guanggu Branch of Wuhan Rural Commercial Bank Co.,Ltd. Pledgor: HUBEI INFOTECH Co.,Ltd. Registration number: Y2020980005462 |
|
PE01 | Entry into force of the registration of the contract for pledge of patent right | ||
PC01 | Cancellation of the registration of the contract for pledge of patent right | ||
PC01 | Cancellation of the registration of the contract for pledge of patent right |
Date of cancellation: 20210608 Granted publication date: 20191105 Pledgee: Guanggu Branch of Wuhan Rural Commercial Bank Co.,Ltd. Pledgor: HUBEI INFOTECH Co.,Ltd. Registration number: Y2020980005462 |
|
PE01 | Entry into force of the registration of the contract for pledge of patent right |
Denomination of invention: A method and device for tracing SSH connection source after multi level jump Effective date of registration: 20210616 Granted publication date: 20191105 Pledgee: Guanggu Branch of Wuhan Rural Commercial Bank Co.,Ltd. Pledgor: HUBEI INFOTECH Co.,Ltd. Registration number: Y2021420000038 |
|
PE01 | Entry into force of the registration of the contract for pledge of patent right | ||
PC01 | Cancellation of the registration of the contract for pledge of patent right |
Date of cancellation: 20220531 Granted publication date: 20191105 Pledgee: Guanggu Branch of Wuhan Rural Commercial Bank Co.,Ltd. Pledgor: HUBEI INFOTECH CO.,LTD. Registration number: Y2021420000038 |
|
PC01 | Cancellation of the registration of the contract for pledge of patent right | ||
PE01 | Entry into force of the registration of the contract for pledge of patent right |
Denomination of invention: A method and device for tracing SSH connection source after multi-level jump Effective date of registration: 20220610 Granted publication date: 20191105 Pledgee: Guanggu Branch of Wuhan Rural Commercial Bank Co.,Ltd. Pledgor: HUBEI INFOTECH CO.,LTD. Registration number: Y2022420000153 |
|
PE01 | Entry into force of the registration of the contract for pledge of patent right | ||
PC01 | Cancellation of the registration of the contract for pledge of patent right |
Date of cancellation: 20230922 Granted publication date: 20191105 Pledgee: Guanggu Branch of Wuhan Rural Commercial Bank Co.,Ltd. Pledgor: HUBEI INFOTECH CO.,LTD. Registration number: Y2022420000153 |
|
PC01 | Cancellation of the registration of the contract for pledge of patent right |