CN108494749A - Method, apparatus, equipment and the computer readable storage medium of IP address disabling - Google Patents

Method, apparatus, equipment and the computer readable storage medium of IP address disabling Download PDF

Info

Publication number
CN108494749A
CN108494749A CN201810192262.0A CN201810192262A CN108494749A CN 108494749 A CN108494749 A CN 108494749A CN 201810192262 A CN201810192262 A CN 201810192262A CN 108494749 A CN108494749 A CN 108494749A
Authority
CN
China
Prior art keywords
address
disabling
white list
password
logging
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201810192262.0A
Other languages
Chinese (zh)
Other versions
CN108494749B (en
Inventor
孟苏嘉
甘果
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Ping An Life Insurance Company of China Ltd
Original Assignee
Ping An Life Insurance Company of China Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Ping An Life Insurance Company of China Ltd filed Critical Ping An Life Insurance Company of China Ltd
Priority to CN201810192262.0A priority Critical patent/CN108494749B/en
Publication of CN108494749A publication Critical patent/CN108494749A/en
Application granted granted Critical
Publication of CN108494749B publication Critical patent/CN108494749B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1441Countermeasures against malicious traffic

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Power Engineering (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention discloses a kind of methods of IP address disabling, the described method comprises the following steps:Record the number of each IP address input error password when logging in;Judge whether the number of the input error password in preset time is equal to or more than the first preset value;If being equal to or more than the first preset value, the data recorded in IP address white list are extracted, and judge whether the IP address is the data recorded in white list;If the IP address is the data recorded in white list, authorizes the permission that the IP address continues to log in and otherwise disable the IP address.The invention also discloses device, equipment and the computer readable storage mediums of a kind of IP address disabling.The present invention can carry out IP address intelligent recognition investigation and judge that effectively defence malice logs in behavior, while avoid missing disabling behavior to IP address.

Description

Method, apparatus, equipment and the computer readable storage medium of IP address disabling
Technical field
The present invention relates to method, apparatus, equipment and computers that field of communication technology more particularly to a kind of IP address disable Readable storage medium storing program for executing.
Background technology
Currently, as computer technology continues to develop, thing followed information security issue oneself through causing people increasingly Extensive concern.The information security of people is highly susceptible to threaten, for example, being logged in from malice, obtains user information, and will use Family information reveal etc. the threat for the information security brought, once malice logins successfully, hacker or virus can be installed in system Rogue program steals confidential data or sends spam without restraint using the computer controlled, is caused to user irretrievable Loss.
Therefore, the existing method for preventing malice from logging in for example detects close generally by detecting that malice logs in When code input error, the IP address of trigger password input error is disabled, to prevent malice from logging in, but it is close detecting When code input error, the IP address of trigger password input error is disabled, it may appear that the accidentally possibility of disabling, to IP address Disabled-management is not smart enough, such as when multiple users are logged in by common network, when multiple users forget Password, meeting There is the same IP address and the case where repeatedly input password occur, but it is close to be not due to input caused by malice logs at this time Code mistake, but IP address can still be disabled at this time, to cause accidentally to disable.
Invention content
It is a primary object of the present invention to propose a kind of method, apparatus of IP address disabling, equipment and computer-readable deposit Storage media, it is intended to solve the existing method for preventing malice from logging in, it may appear that the accidentally possibility of disabling, to the Disabled-management of IP address Technical problem not smart enough.
To achieve the above object, the present invention provides a kind of method of IP address disabling, the method includes:
Record the number of each IP address input error password when logging in;
Judge whether the number of the input error password in preset time is equal to or more than the first preset value;
If being equal to or more than the first preset value, the data recorded in IP address white list are extracted, and with judging the IP Whether location is the data recorded in white list;
If the IP address is the data recorded in white list, authorizes the IP address and continue the permission logged in, otherwise, The IP address is disabled.
Optionally, after described the step of being disabled the IP address, further include:
The authority information received is obtained, and judges whether the authority information received meets preset condition, wherein is described Preset condition includes the IP address of internal system employee, by the IP address of verification;
If the authority information received meets preset condition, by the corresponding disabling IP of the authority information received Location is unsealed.
Optionally, described to obtain the authority information received, and judge whether the authority information received meets default item The step of part includes:
The login name that IP address last time logs in is obtained, and corresponding with the login name by login name extraction Employee's work number, and by employee's work number be sent to preserve employee information database verify;
After verification passes through, the corresponding logon rights in disabled address are extracted by employee's work number;
Judge whether the logon rights meet deblocking standard.
Optionally, it after described the step of being unsealed the authority information received corresponding disabling IP address, also wraps It includes:
The IP address that solution is honored as a queen is recorded in IP address white list, the IP address white list is updated into Mobile state.
Optionally, described that the IP address that solution is honored as a queen is recorded in IP address white list, to the IP address white list into After the step of Mobile state updates, further include:
It obtains in predetermined period, mistake occurs in the password that the logging request that each IP address in white list is initiated is inputted Number;
Judge whether the number that mistake occurs in the password that the logging request that each IP address is initiated is inputted is more than second in advance If value;
When the number that mistake occurs in the password that the logging request initiated there are IP address is inputted is more than the second preset value, Corresponding IP address is removed from white list then, or the IP address is sent to monitoring client and is confirmed.
Optionally, after described the step of being disabled the IP address, further include:
Extract the IP address corresponding login account of input password mistake when logging in;
The information of monitoring alarm and disabling IP address are sent to the corresponding reserved account of login account extracted.
Optionally, it is described record each IP address log in when input error password number the step of before, further include:
IP address white list is established according to the instruction received, and the IP address for meeting preset condition is recorded in the IP In the white list of address.
In addition, to achieve the above object, the present invention also provides a kind of device of IP address disabling, described device includes:
Logging modle, the number for recording each IP address input error password when logging in;
Judgment module, for judging it is default whether the number of the input error password in preset time is equal to or more than first Value;If being equal to or more than the first preset value, the data recorded in IP address white list are extracted, and whether judge the IP address For the data recorded in white list;If the IP address is the data recorded in white list, authorizes the IP address and continue to step on Otherwise the permission of record disables the IP address.
In addition, to achieve the above object, the present invention also provides a kind of equipment of IP address disabling, the addresses the IP disabling Equipment include IP address disabling program, when the equipment execution that the program of the IP address disabling disable by the addresses IP The step of realizing the method for IP address disabling as described above.
In addition, to achieve the above object, it is described computer-readable the present invention also provides a kind of computer readable storage medium The program of IP address disabling is stored on storage medium, the program of the IP address disabling realizes institute as above when being executed by processor The step of method for the IP address disabling stated.
Method, apparatus, equipment and the computer readable storage medium of IP address disabling proposed by the present invention, it is every by recording The number of a IP address input error password when logging in;Then judge the input error password in preset time number whether Equal to or more than the first preset value;If being equal to or more than the first preset value, the data recorded in IP address white list are extracted, and Judge whether the IP address is the data recorded in white list;If the IP address is the data recorded in white list, award It gives the permission that the IP address continues to log in otherwise to disable the IP address, intelligence is carried out to IP address to realize Identification investigation judges that effectively defence malice logs in behavior, while avoiding missing disabling behavior to IP address.
Description of the drawings
Fig. 1 is the flow diagram of the method first embodiment of IP address of the present invention disabling;
Fig. 2 is the flow diagram of the method second embodiment of IP address of the present invention disabling;
Fig. 3 is the flow diagram of the method 3rd embodiment of IP address of the present invention disabling;
Fig. 4 is the flow diagram of the method fourth embodiment of IP address of the present invention disabling;
Fig. 5 is the device structure schematic diagram for the hardware running environment that the embodiment of the present invention is related to.
The embodiments will be further described with reference to the accompanying drawings for the realization, the function and the advantages of the object of the present invention.
Specific implementation mode
It should be appreciated that the specific embodiments described herein are merely illustrative of the present invention, it is not intended to limit the present invention.
The primary solutions of the embodiment of the present invention are:By recording each IP address input error password when logging in Number;Then judge whether the number of the input error password in preset time is equal to or more than the first preset value;If be equal to or More than the first preset value, then the data recorded in IP address white list are extracted, and judges whether the IP address is in white list The data of record;If the IP address is the data recorded in white list, authorizes the IP address and continue the permission logged in, it is no Then, the IP address is disabled, to realize that carrying out intelligent recognition investigation to IP address judges, effectively defence malice logs in Behavior, while avoiding missing disabling behavior to IP address.
The embodiment of the present invention it is considered that it is existing prevent malice log in method, generally by detect malice step on When recording, for example detecting Password Input mistake, the IP address of trigger password input error is disabled, to prevent malice from stepping on Record, but when detecting Password Input mistake, the IP address of trigger password input error is disabled, it may appear that accidentally disable May, it is not smart enough to the Disabled-management of IP address, such as when multiple users are logged in by common network, in multiple users When all forgetting Password, it may appear that the case where repeatedly input password occurs in the same IP address, but is not due to malice at this time Password mistake is inputted caused by logging in, but IP address can still be disabled at this time, to cause accidentally to disable.
For this purpose, the embodiment of the present invention proposes a kind of method of IP address disabling, by recording each IP address when logging in The number of input error password;Then it is pre- to judge whether the number of the input error password in preset time is equal to or more than first If value;If being equal to or more than the first preset value, the data recorded in IP address white list are extracted, and judge that the IP address is The no data to be recorded in white list;If the addresses IP are the data recorded in white list, authorize the IP address and continue Otherwise the permission of login disables the IP address, to realize that carrying out intelligent recognition investigation to IP address judges have Effect defence malice logs in behavior, while avoiding missing disabling behavior to IP address.
The present invention provides a kind of method of IP address disabling.
Referring to Fig.1, Fig. 1 is the flow diagram of the method first embodiment of IP address of the present invention disabling.
In the present embodiment, this method includes:
Step S10 records the number of each IP address input error password when logging in;
In the present embodiment, can by server or system background to login this system of each IP address the case where It is recorded, server, also referred to as servomechanism, is to provide the equipment of the service of calculating.Since server needs to respond service request, and It is handled, therefore in general server should have the service of undertaking and ensure the ability of service.The composition of server includes Processor, hard disk, memory, system bus etc. are similar with general computer architecture, but due to needing to provide highly reliable clothes Business, thus it is more demanding in processing capacity, stability, reliability, safety, scalability, manageability etc..
The effect of server may include:1, operational network operating system, in control and coordination network between each computer Work, meet the requirement of user to the maximum extent, and respond and handle.2, store and manage the shared money in network Source, such as database, file, application program, disk space, printer, plotter.3, it is taken for the application program of each work station Business such as makes network server not act only as network server using client/server (Client/Server) structure, but also Take on apps server.4, network activity is exercised supervision and is controlled, actual management, distribution system money are carried out to network Source understands and adjusts system running state, certain resources of closing/startup etc..It therefore, can be by server to each IP address The concrete condition of login system exercises supervision record, records the number of each IP address input error password when logging in.Currently The number of each IP address input error password when logging in can also be recorded by system background.
Further, it is described record each IP address log in when input error password number the step of before, also wrap It includes:
IP address white list is established according to the instruction received, and the IP address for meeting preset condition is recorded in the IP In the white list of address.
Before each embodiment for implementing the present invention, the white name of IP address can be established previously according to the instruction received It is single, then the IP address for meeting preset condition is recorded in the IP address white list, such as the IP of internal system employee Location, by the IP address etc. of verification.
Step S20, judges whether the number of the input error password in preset time is equal to or more than the first preset value;
Each IP address is obtained when logging in after the number of input error password in record, it can will be in preset time The number for recording obtained input error password is compared with the first preset value, to judge the input error in preset time Whether the number of password is equal to or more than the first preset value, wherein the preset time can be five minutes or other times Value, does not limit, the first preset value can be configured with specific reference to the value of preset time, such as when described default herein Between be five minutes when, first preset value can be 5 or other integer values.
Step S30 extracts the data recorded in IP address white list, and judge if being equal to or more than the first preset value Whether the IP address is the data recorded in white list;
When the number of IP address input error password when logging in is equal to or more than the first preset value, then IP address is extracted The data recorded in white list, and judge whether the IP address is the data recorded in white list;It specifically, can will be pre- If the number for the input error password that record obtains in the time is obtained equal to or more than the IP address of the first preset value with extraction The data recorded in white list are matched, if being matched to consistent data in white list, illustrate that the IP address is white The data of name unirecord.
Step S40 authorizes the IP address and continues the power logged in if the IP address is the data recorded in white list Limit,
Step S50 disables the IP address if the IP address is not the data recorded in white list.
If by comparison, determine that the number of the input error password when logging in is equal to or more than the IP of the first preset value Address is the data that record in white list, illustrates that current IP address is to meet the addresses IP of preset condition, for example is internal system The IP address of employee need not then disable the IP address by the IP address etc. of verification, to prevent accidentally disabling, Puzzlement is brought to user;If it is determined that the number of the input error password when logging in is with being equal to or more than the IP of the first preset value Location is not the data recorded in white list, then it is assumed that current IP address exist malice log in risk, then by current IP address into Row disabling, defence malice logs in behavior, to ensure the data information security of user.
The method for the IP address disabling that the present embodiment proposes, by recording each IP address input error password when logging in Number;Then judge whether the number of the input error password in preset time is equal to or more than the first preset value;If being equal to Or be more than the first preset value, then the data recorded in IP address white list are extracted, and judge whether the IP address is white list The data of middle record;If the IP address is the data recorded in white list, authorizes the IP address and continues the permission logged in, Otherwise, the IP address is disabled, to realize that carrying out intelligent recognition investigation to IP address judges, effectively defence malice is stepped on Record behavior, while avoiding missing disabling behavior to IP address.
Further, with reference to Fig. 2, the method first embodiment based on IP address of the present invention disabling proposes that the present invention second is real Apply example.
In the present embodiment, after the step S40 the step of, further include:
Step S60 obtains the authority information received, and judges whether the authority information received meets preset condition, Wherein, the preset condition includes the IP address of internal system employee, by the IP address of verification;
In the present embodiment, after IP address is disabled, user can be unsealed by validation information, specifically Ground, system or server obtain authority information input by user first, and it is pre- then to judge whether the authority information received meets If condition, than such as whether being the IP address of internal system employee, by the IP address etc. of verification;Wherein, judge the IP address Whether it is the IP address of interior employee by employee's work number to judge;
Step S70, it is if the authority information received meets preset condition, the authority information received is corresponding Disabling IP address is unsealed.
If the authority information received meets preset condition, for example is the IP address of internal system employee, Huo Zhewei By the IP address etc. of verification, then the corresponding disabling IP address of the authority information received is unsealed.If by verification, really Surely the authority information received does not meet preset condition, then continues to disable the IP address.
Further, the step S50 includes:
The login name that IP address last time logs in is obtained, and corresponding with the login name by login name extraction Employee's work number, and by employee's work number be sent to preserve employee information database verify;
In the present embodiment, after receiving the permission of deblocking input by user, it is last the addresses IP can be obtained first The login name once logged in, and employee's work number corresponding with the login name is extracted by the login name, then by the member The database that work work number is sent to preservation employee information is verified;The inside of verification may include that current employee's work number corresponds to Employee whether be interior employee, and whether in official rank;
After verification passes through, the corresponding logon rights in disabled address are extracted by employee's work number;
When by verify, determine the corresponding employee of current employee's work number be interior employee, and it is on-job after, by described Employee's work number extracts the corresponding logon rights in disabled address, such as the system that can be logged in, login IP of record etc.;
Judge whether the logon rights meet deblocking standard.
After extraction obtains logon rights, need further to judge whether the logon rights meet deblocking standard, than If whether current IP address can log in current system, the login IP address of record whether be internal system employee IP address, By the IP address etc. of verification, if whether current IP address can log in current system, and the login IP address recorded is to be The IP address of system interior employee, or the IP address by verification, it is determined that current IP address meets deblocking standard, can carry out Deblocking, otherwise, continues to disable current IP address.
Further, with reference to Fig. 3, the method second embodiment based on IP address of the present invention disabling proposes that third of the present invention is real Apply example.
In the present embodiment, after the step S70 the step of, further include:
The IP address that solution is honored as a queen is recorded in IP address white list step S80, to the IP address white list into action State updates.
After being unsealed disabled IP address, deblocking IP address can be added to IP address white list, so as to The IP address white list is updated into Mobile state.
Further, after the step S80 the step of, further include:
It obtains in predetermined period, mistake occurs in the password that the logging request that each IP address in white list is initiated is inputted Number;
In the present embodiment, it after being updated IP address white list, can further obtain in predetermined period, in vain There is the number of mistake in the password that the logging request that each IP address in list is initiated is inputted;The predetermined period can be One day, two days etc..
Judge whether the number that mistake occurs in the password that the logging request that each IP address is initiated is inputted is more than second in advance If value;
Then judge whether the number that mistake occurs in password that the logging request that each IP address is initiated is inputted is more than the Two preset values;Wherein, second preset value can be 10 or other integer values;
When the number that mistake occurs in the password that the logging request initiated there are IP address is inputted is more than the second preset value, Corresponding IP address is removed from white list then, or the IP address is sent to monitoring client and is confirmed.
When the number that mistake occurs in the password that the logging request initiated there are IP address is inputted is more than the second preset value, There are current IP address is stolen, the possibility of malice login is then carried out, is needed at this time then by corresponding IP address from white list Middle removal, or the IP address is sent to monitoring client and is confirmed.
Further, with reference to Fig. 4, the method first embodiment based on IP address of the present invention disabling proposes that the present invention the 4th is real Apply example.
In the present embodiment, after the step S50 the step of, further include:
Step S90 extracts the IP address corresponding login account of input password mistake when logging in;
In the present embodiment, it carries out disabling it in the IP address that input error password is equal to or more than to the first preset value Afterwards, the corresponding login account of input password mistake can be further given when logging in carry out prompting alarm, therefore firstly the need of carrying Take the IP address corresponding login account of input password mistake, login account described in onestep extraction of going forward side by side when logging in corresponding Reserved account;
It is corresponding reserved to be sent to the login account extracted by step S100 for the information of monitoring alarm and disabling IP address Account.
After extraction obtains login account and corresponding reserved account, you can by the information of monitoring alarm and disabling IP Location is sent to the corresponding reserved account of the login account extracted, to remind user to take precautions against in time, the behaviour such as password of modifying Make.
The present invention further provides a kind of device of IP address disabling, described device includes:
Logging modle, the number for recording each IP address input error password when logging in;
Judgment module, for judging it is default whether the number of the input error password in preset time is equal to or more than first Value;If being equal to or more than the first preset value, the data recorded in IP address white list are extracted, and whether judge the IP address For the data recorded in white list;If the IP address is the data recorded in white list, authorizes the IP address and continue to step on Otherwise the permission of record disables the IP address.
The specific embodiment of the device of IP address disabling of the present invention and each embodiment of method that above-mentioned IP address disables are basic Identical, therefore not to repeat here.
The embodiment of the present invention further provides for a kind of equipment of IP address disabling.
With reference to Fig. 5, Fig. 5 is the device structure schematic diagram for the hardware running environment that the embodiment of the present invention is related to.
As shown in figure 5, the equipment of IP address disabling may include:Processor 1001, such as CPU, network interface 1002, User interface 1003, memory 1004.Connection communication between these components can be realized by communication bus.Network interface 1002 may include optionally wireline interface (for connecting cable network), wireless interface (such as WI-FI interfaces, the bluetooth of standard Interface, infrared interface etc., for connecting wireless network).User interface 1003 may include display screen (Display), input Unit such as keyboard (Keyboard), optional user interface 1003 can also include the wireline interface of standard (such as connecting Wired keyboard, wire mouse etc.) and/or wireless interface (such as connecting Wireless Keyboard, wireless mouse).Memory 1004 can Can also be stable memory (non-volatile memory), such as magnetic disk storage to be high-speed RAM memory. Memory 1004 optionally can also be the storage device independently of aforementioned processor 1001.
Optionally, the equipment of IP address disabling can also include camera, RF (Radio Frequency, radio frequency) electricity Road, sensor, voicefrequency circuit, WiFi module etc..
It will be understood by those skilled in the art that the device structure that IP address shown in figure disables is not constituted to IP address The restriction of the equipment of disabling may include either combining certain components or different portions than illustrating more or fewer components Part is arranged.
As shown in figure 5, as may include that operating system, network are logical in a kind of memory 1004 of computer storage media Believe module, the program of Subscriber Interface Module SIM and IP address disabling.Wherein, operating system is that management and control IP address disable The program of device hardware and software resource, support network communication module, Subscriber Interface Module SIM, IP address disabling program and its The operation of his program or software;Network communication module is for managing and controlling network interface 1002;Subscriber Interface Module SIM is for managing Reason and control user interface 1003.
In the equipment of IP address disabling shown in Fig. 5, network interface 1002 is mainly used for connecting database, with database Into row data communication;User interface 1003 is mainly used for connecting client (can be understood as user terminal), with client into line number According to communication, information is such as shown to client by window, or receives the operation information that client is sent;And processor 1001 can For executing the program of the addresses IP stored in memory 1004 disabling, to realize each reality of method of above-mentioned IP address disabling The step of applying.
The embodiment of the present invention additionally provides a kind of computer readable storage medium, the computer-readable recording medium storage There are one or multiple programs, one or more of programs can be executed by one or more processor, above-mentioned to realize The step of each embodiment of method of IP address disabling.
It should also be noted that, herein, the terms "include", "comprise" or its any other variant are intended to non- It is exclusive to include, so that process, method, article or device including a series of elements include not only those elements, But also include other elements that are not explicitly listed, or further include solid by this process, method, article or device Some elements.In the absence of more restrictions, the element limited by sentence "including a ...", it is not excluded that including There is also other identical elements in the process of the element, method, article or device.
Through the above description of the embodiments, those skilled in the art can be understood that above-described embodiment side Method can add the mode of required general hardware platform to realize by software, naturally it is also possible to by hardware, but in many cases The former is more preferably embodiment.Based on this understanding, technical scheme of the present invention substantially in other words does the prior art Going out the part of contribution can be expressed in the form of software products, which is stored in a storage medium In (such as ROM/RAM, magnetic disc, CD), including some instructions are used so that a station terminal equipment (can be mobile phone, computer, clothes Be engaged in device, air conditioner or the network equipment etc.) method that executes each embodiment of the present invention.
It these are only the preferred embodiment of the present invention, be not intended to limit the scope of the invention, it is every to utilize this hair Equivalent structure or equivalent flow shift made by bright specification and accompanying drawing content is applied directly or indirectly in other relevant skills Art field, is included within the scope of the present invention.

Claims (10)

1. a kind of method of IP address disabling, which is characterized in that the described method comprises the following steps:
Record the number of each IP address input error password when logging in;
Judge whether the number of the input error password in preset time is equal to or more than the first preset value;
If being equal to or more than the first preset value, the data recorded in IP address white list are extracted, and judge that the IP address is The no data to be recorded in white list;
If the IP address is the data recorded in white list, authorizes the IP address and continue the permission logged in, otherwise, by institute IP address is stated to be disabled.
2. the method for IP address as described in claim 1 disabling, which is characterized in that described to disable the IP address After step, further include:
The authority information received is obtained, and judges whether the authority information received meets preset condition, wherein is described default Condition includes the IP address of internal system employee, by the IP address of verification;
If the authority information received meets preset condition, by the corresponding disabling IP address of the authority information received into Row deblocking.
3. the method for IP address disabling as claimed in claim 2, which is characterized in that it is described to obtain the authority information received, And judge that the step of whether authority information received meets preset condition includes:
The login name that IP address last time logs in is obtained, and employee corresponding with the login name is extracted by the login name Work number, and by employee's work number be sent to preserve employee information database verify;
After verification passes through, the corresponding logon rights in disabled address are extracted by employee's work number;
Judge whether the logon rights meet deblocking standard.
4. the method for IP address disabling as claimed in claim 2, which is characterized in that described to correspond to the authority information received Disabling IP address the step of being unsealed after, further include:
The IP address that solution is honored as a queen is recorded in IP address white list, the IP address white list is updated into Mobile state.
5. the method for IP address disabling as claimed in claim 4, which is characterized in that described that the IP address that solution is honored as a queen is recorded In IP address white list, to the IP address white list into after the newer step of Mobile state, further include:
It obtains in predetermined period, time of mistake occurs in the password that the logging request that each IP address in white list is initiated is inputted Number;
Judge whether the number that mistake occurs in the password that the logging request that each IP address is initiated is inputted is more than the second preset value;
When the number that mistake occurs in the password that the logging request initiated there are IP address is inputted is more than the second preset value, then will Corresponding IP address is removed from white list, or the IP address is sent to monitoring client and is confirmed.
6. the method for IP address as described in claim 1 disabling, which is characterized in that described to disable the IP address After step, further include:
Extract the IP address corresponding login account of input password mistake when logging in;
The information of monitoring alarm and disabling IP address are sent to the corresponding reserved account of login account extracted.
7. the method for IP address disabling as claimed in any one of claims 1 to 6, which is characterized in that described to record each IP address Log in when input error password number the step of before, further include:
IP address white list is established according to the instruction received, and the IP address for meeting preset condition is recorded in the IP address In white list.
8. a kind of device of IP address disabling, which is characterized in that described device includes:
Logging modle, the number for recording each IP address input error password when logging in;
Judgment module, for judging whether the number of the input error password in preset time is equal to or more than the first preset value; If be equal to or more than the first preset value, extract the data recorded in IP address white list, and judge the IP address whether be The data recorded in white list;If the IP address is the data recorded in white list, authorizes the IP address and continue to log in Permission otherwise the IP address is disabled.
9. a kind of equipment of IP address disabling, which is characterized in that the equipment of the IP address disabling includes the journey of IP address disabling Sequence is realized when the equipment that the program that the IP address disables is disabled by the IP address executes such as any one of claim 1 to 7 The step of method of the IP address disabling.
10. a kind of computer readable storage medium, which is characterized in that be stored with IP address on the computer readable storage medium The program of the program of disabling, the IP address disabling is realized when being executed by processor as described in any one of claim 1 to 7 The step of method of IP address disabling.
CN201810192262.0A 2018-03-07 2018-03-07 Method, device and equipment for disabling IP address and computer readable storage medium Active CN108494749B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810192262.0A CN108494749B (en) 2018-03-07 2018-03-07 Method, device and equipment for disabling IP address and computer readable storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810192262.0A CN108494749B (en) 2018-03-07 2018-03-07 Method, device and equipment for disabling IP address and computer readable storage medium

Publications (2)

Publication Number Publication Date
CN108494749A true CN108494749A (en) 2018-09-04
CN108494749B CN108494749B (en) 2021-06-04

Family

ID=63338092

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810192262.0A Active CN108494749B (en) 2018-03-07 2018-03-07 Method, device and equipment for disabling IP address and computer readable storage medium

Country Status (1)

Country Link
CN (1) CN108494749B (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110011992A (en) * 2019-03-25 2019-07-12 联想(北京)有限公司 System login method and electronic equipment
CN114499973A (en) * 2021-12-28 2022-05-13 重庆医药高等专科学校 Safety protection system for asset management system
CN117035891A (en) * 2023-08-17 2023-11-10 慧众合(山东)科技创新发展有限公司 Market trading system based on knowledge graph

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050188222A1 (en) * 2004-02-24 2005-08-25 Covelight Systems, Inc. Methods, systems and computer program products for monitoring user login activity for a server application
CN101431449A (en) * 2008-11-04 2009-05-13 中国科学院计算技术研究所 Network flux cleaning system
CN106874744A (en) * 2017-01-19 2017-06-20 深圳市金立通信设备有限公司 A kind of method and terminal for preventing from missing locking terminal
CN107231346A (en) * 2017-05-03 2017-10-03 北京海顿中科技术有限公司 A kind of method of cloud platform identification
CN107295017A (en) * 2017-08-10 2017-10-24 四川长虹电器股份有限公司 CC means of defences based on user authentication

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050188222A1 (en) * 2004-02-24 2005-08-25 Covelight Systems, Inc. Methods, systems and computer program products for monitoring user login activity for a server application
CN101431449A (en) * 2008-11-04 2009-05-13 中国科学院计算技术研究所 Network flux cleaning system
CN106874744A (en) * 2017-01-19 2017-06-20 深圳市金立通信设备有限公司 A kind of method and terminal for preventing from missing locking terminal
CN107231346A (en) * 2017-05-03 2017-10-03 北京海顿中科技术有限公司 A kind of method of cloud platform identification
CN107295017A (en) * 2017-08-10 2017-10-24 四川长虹电器股份有限公司 CC means of defences based on user authentication

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110011992A (en) * 2019-03-25 2019-07-12 联想(北京)有限公司 System login method and electronic equipment
CN110011992B (en) * 2019-03-25 2022-07-26 联想(北京)有限公司 System login method and electronic equipment
CN114499973A (en) * 2021-12-28 2022-05-13 重庆医药高等专科学校 Safety protection system for asset management system
CN114499973B (en) * 2021-12-28 2023-09-01 重庆医药高等专科学校 Safety protection system for asset management system
CN117035891A (en) * 2023-08-17 2023-11-10 慧众合(山东)科技创新发展有限公司 Market trading system based on knowledge graph

Also Published As

Publication number Publication date
CN108494749B (en) 2021-06-04

Similar Documents

Publication Publication Date Title
US11019048B2 (en) Password state machine for accessing protected resources
US20210289002A1 (en) Adaptive offline policy enforcement based on context
US8839354B2 (en) Mobile enterprise server and client device interaction
US8984291B2 (en) Access to a computing environment by computing devices
US9148405B2 (en) Client device token based multifactor authentication
CN109784031B (en) Account identity verification processing method and device
US9848001B2 (en) Secure access to mobile applications
US20160337862A1 (en) Associating services to perimeters
US10028139B2 (en) Leveraging mobile devices to enforce restricted area security
CN104601324B (en) A kind of verification method, terminal and system for application
US8590017B2 (en) Partial authentication for access to incremental data
CN103733663A (en) Method and apparatus for providing a secure virtual environment on a mobile device
CN107484152B (en) Management method and device for terminal application
CN106878250B (en) Cross-application single-state login method and device
US9756173B2 (en) Leveraging mobile devices to enforce restricted area security
CN104320389A (en) Fusion identify protection system and fusion identify protection method based on cloud computing
CN108494749A (en) Method, apparatus, equipment and the computer readable storage medium of IP address disabling
CN108647501A (en) Multiple utility program shares password unlocking method, device, equipment and storage medium
CN109977039A (en) HD encryption method for storing cipher key, device, equipment and readable storage medium storing program for executing
CN114244568B (en) Security access control method, device and equipment based on terminal access behavior
CN102801728B (en) The management method of automatic login of client side and system
CN112464213B (en) Operating system access control method, device, equipment and storage medium
CN104883341A (en) Application management device, terminal and application management method
CN104270342B (en) The access method and system of virtual desktop
CN114531679A (en) Mobile terminal permission interaction system and method based on user identification card

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant