{"id":726,"date":"2009-09-07T07:41:39","date_gmt":"2009-09-07T07:41:39","guid":{"rendered":"http:\/\/pchero21.com\/?p=726"},"modified":"2009-09-07T07:41:39","modified_gmt":"2009-09-07T07:41:39","slug":"psad-%ec%84%a4%ec%b9%98","status":"publish","type":"post","link":"http:\/\/pchero21.com\/?p=726","title":{"rendered":"psad \uc124\uce58"},"content":{"rendered":"

 * \uc5ed\uc0ac<\/span><\/p>\n

 psad \uc18c\ud504\ud2b8\uc6e8\uc5b4 \ud504\ub85c\uc81d\ud2b8\ub294 1999\ub144 \uac00\uc744, \ubc14\uc2a4\ud2f0\uc720 \uac1c\ubc1c\ud300\uc774 \ubc14\uc2a4\ud2f0\uc720\uac00 \uacbd\ub7c9\uc758 \ub124\ud2b8\uc6cc\ud06c \uce68\uc785 \ud0d0\uc9c0 \ucef4\ud3ec\ub10c\ud2b8\ub97c \uc81c\uacf5\ud574\uc57c \ud55c\ub2e4\uace0 \uacb0\uc815\ud588\uc744 \ub54c Bastille \ub9ac\ub205\uc2a4\uc758 \uc77c\ubd80\ub85c \uc2dc\uc791\ud588\ub2e4. \ub2f9\uc2dc \ud53c\ud130 \uc653\ud0a8\uc2a4\ub294 \uc9c0\uae08\uae4c\uc9c0\ub3c4 Bastille\uc640 \ud568\uaed8 \uc81c\uacf5\ub418\ub294 \ub9e4\uc6b0 \ub6f0\uc5b4\ub09c \ubc29\ud654\ubcbd \uc2a4\ud06c\ub9bd\ud2b8\ub97c \uac1c\ubc1c \uc911\uc774\uc5c8\uc73c\ubbc0\ub85c \ubc29\ud654\ubcbd \ub85c\uadf8\uac00 \uc81c\uacf5\ud558\ub294 \uc815\ubcf4\uc5d0 \uae30\ubc18\ud55c IDS \ub3c4\uad6c\ub97c \uac1c\ubc1c\ud558\ub294 \uac83\uc740 \uc790\uc5f0\uc2a4\ub7ec\uc6b4 \ub2e4\uc74c \uc791\uc5c5\uc774\uc5c8\ub2e4. \ub610 \ub2f9\uc2dc PortSentry(http:\/\/sourceforge.net\/projects\/sentrytools \ucc38\uc870)\uc5d0\ub294 \uae30\ubcf8 \ubc84\ub9ac\uae30 \uc804\ub7b5\uc73c\ub85c \uc124\uc815\ub41c \ubc29\ud654\ubcbd\uacfc \ud568\uaed8 \uc0ac\uc6a9\ud558\uae30\uc5d0\ub294 \ubd80\uc801\uc808\ud55c \uad6c\uc870\uc801 \uc124\uacc4 \ubb38\uc81c\uac00 \uc788\uc5c8\ub2e4.<\/p>\n

 \uc774\uc5d0 2001\ub144 \ub9c8\uc774\ud074 \ub798\uc26c(\uc774 \uae00\uc758 \uc6d0 \uc800\uc790)\ub294 \ubc14\uc2a4\ud2f0\uc720-NIDS \ud504\ub85c\uc81d\ud2b8\uac00 \ubc14\uc2a4\ud2f0\uc720\ub97c \uc124\uce58\ud560 \ud544\uc694 \uc5c6\uc774 \ub3c5\ub9bd\uc801\uc73c\ub85c \uc2e4\ud589\ub420 \uc218 \uc788\uac8c \ubcc4\ub3c4\uc758 \ud504\ub85c\uc81d\ud2b8\ub85c \ubd84\ub9ac\uc2dc\ud0a4\uace0 \ud3ec\ud2b8 \uc2a4\uce94 \uacf5\uaca9 \ud0d0\uc9c0\uae30(Port Scan Attack Detector)\ub77c\uace0 \uba85\uba85\ud588\ub2e4. psad\uc758 \uac1c\ubc1c \uc8fc\uae30\ub294 \ub9e4\uc6b0 \ud65c\ubc1c\ud558\uba70 \ud3c9\uade0 3~4\ub2ec\uc5d0 \ud55c \ubc88\uc529 \uc0c8\ub85c\uc6b4 \ubc30\ud3ec\ud310\uc774 \ub098\uc628\ub2e4.<\/p>\n

 * \ubc29\ud654\ubcbd \ub85c\uadf8\ub97c \ubd84\uc11d\ud558\ub294 \uc774\uc720<\/span><\/p>\n

 \uc88b\uc740 \ub124\ud2b8\uc6cc\ud06c \ubcf4\uc548\uc740 \uae30\ubcf8 \ub124\ud2b8\uc6cc\ud06c \uc5f0\uacb0\uc131\uacfc \uc11c\ube44\uc2a4\ub97c \ud5c8\uc6a9\ud558\uae30 \uc704\ud574 \uc808\ub300\uc801\uc73c\ub85c \ud544\uc694\ud55c \ub9cc\ud07c\ub9cc \ud5c8\uc6a9\ud558\uac8c \uc801\uc808\ud788 \uc124\uc815\ub41c \ubc29\ud654\ubcbd\uc5d0\uc11c \uc2dc\uc791\ub41c\ub2e4. \ubc29\ud654\ubcbd\uc740 \uc778\ub77c\uc778 \uc7a5\uce58\uc774\ubbc0\ub85c \ub124\ud2b8\uc6cc\ud06c \ud2b8\ub798\ud53d\uc5d0 \ud544\ud130\ub9c1 \ub85c\uc9c1\uc744 \uc801\uc6a9\ud558\uae30 \uc88b\ub2e4. \ucef4\ud4e8\ud130 \ub124\ud2b8\uc6cc\ud0b9\uc758 \ubb38\ub9e5\uc5d0\uc11c \uc778\ub77c\uc778 \uc7a5\uce58\ub780 \ub124\ud2b8\uc6cc\ud06c\ub97c \ud1b5\ud574 \ud328\ud0b7\uc774 \ub77c\uc6b0\ud305\ub420 \ub54c \ud328\ud0b7\uc758 \uc9c1\uc811\uc801\uc778 \uacbd\ub85c\uc5d0 \uc874\uc7ac\ud558\ub294 \ud558\ub4dc\uc6e8\uc5b4\ub97c \uc758\ubbf8\ud55c\ub2e4. \uc778\ub77c\uc778 \uc7a5\uce58 \ub0b4\uc758 \ud558\ub4dc\uc6e8\uc5b4\ub098 \uc18c\ud504\ud2b8\uc6e8\uc5b4\uac00 \uc624\uc791\ub3d9\ud574\uc11c \uae30\uae30\uc758 \ub124\ud2b8\uc6cc\ud06c \ud2b8\ub798\ud53d \uc804\ub2ec \uae30\ub2a5\uc5d0 \uc601\ud5a5\uc744 \ubbf8\uce5c\ub2e4\uba74 \ub124\ud2b8\uc6cc\ud06c \ud1b5\uc2e0\uc740 \ub354 \uc774\uc0c1 \ub3d9\uc791\ud558\uc9c0 \ubabb\ud55c\ub2e4. \uc778\ub77c\uc778 \uc7a5\uce58\uc758 \uc608\ub85c\ub294 \ub77c\uc6b0\ud130, \uc2a4\uc704\uce58, \ube0c\ub9ac\uc9c0, \ubc29\ud654\ubcbd, \ub124\ud2b8\uc6cc\ud06c \uce68\uc785 \ubc29\uc9c0 \uc2dc\uc2a4\ud15c(IPS)\uc774 \uc788\ub2e4.<\/p>\n

 \ubc29\ud654\ubcbd\uc758 \uae30\ub2a5\uc774 \uc880 \ub354 \uc644\uc804\ud574\uc9c0\uace0 \ubcf5\uc7a1\ud574\uc9d0\uc5d0 \ub530\ub77c \uc810\ucc28\uc801\uc73c\ub85c(\uc560\ud50c\ub9ac\ucf00\uc774\uc158 \uacc4\uce35 \uac80\uc0ac\uc640 \uac19\uc774) \uc804\ud1b5\uc801\uc73c\ub85c \uce68\uc785 \ud0d0\uc9c0 \uc2dc\uc2a4\ud15c\uc758 \ubc94\uc8fc\uc600\ub358 \uae30\ub2a5\uc744 \uc81c\uacf5\ud558\uace0 \uc788\ub2e4. \uc774\ub7f0 \uae30\ub2a5\uc774 \ud2b8\ub798\ud53d\uc744 \ud544\ud130\ub9c1\ud558\ub294 \uae30\ub2a5\uc5d0 \ub354\ud574\uc9c0\uba74\uc11c \ubc29\ud654\ubcbd\uc740 \uba85\ubc31\ud55c \uce68\ud22c\uc640 \ubcf5\uc7a1\ud55c \uc815\ud0d0 \uc2dc\ub3c4\ub85c\ubd80\ud130 \uc11c\ube44\uc2a4\ub97c \ubcf4\ud638\ud558\uace0 \uc6dc \ud2b8\ub798\ud53d\uc73c\ub85c\ubd80\ud130\uc758 \uc7a0\uc7ac\uc801\uc778 \ud53c\ud574\ub97c \uc81c\ud55c\ud560 \uc218 \uc788\ub294 \ud6a8\uacfc\uc801\uc778 \uae30\ubc95\uc744 \uc81c\uacf5\ud560 \uc218 \uc788\ub294 \uc591\uc9c8\uc758 \uce68\uc785 \ud0d0\uc9c0 \ub370\uc774\ud130\ub97c \uc0dd\uc131\ud560 \uc218 \uc788\uac8c \ub410\ub2e4. \uad11\ubc94\uc704\ud55c \ub85c\uae45\uacfc \ud544\ud130\ub9c1 \uae30\ub2a5\uc744 \uac16\ucd98 iptables\uc640 \uac19\uc740 \ubc29\ud654\ubcbd\uc740 \ubb34\uc2dc\ud574\uc120 \uc548 \ub418\ub294 \uac00\uce58 \uc788\ub294 \ubcf4\uc548 \ub370\uc774\ud130\ub97c \uc81c\uacf5\ud560 \uc218 \uc788\ub2e4.<\/p>\n

 \uc2a4\ub178\ud2b8\uc640 \uac19\uc740 \uc804\uc6a9 \uce68\uc785 \ud0d0\uc9c0 \uc2dc\uc2a4\ud15c\uc774 \uad49\uc7a5\ud788 \ub9ce\uc740 \uae30\ub2a5\uacfc \ub124\ud2b8\uc6cc\ud06c \uacf5\uaca9\uc744 \uae30\uc220\ud558\uae30 \uc704\ud55c \uad11\ubc94\uc704\ud55c \uaddc\uce59 \uc5b8\uc5b4\ub97c \uc81c\uacf5\ud558\ub294 \ubc18\uba74 iptables\ub294 \ud56d\uc0c1 \ub124\ud2b8\uc6cc\ud06c \ud2b8\ub798\ud53d\uc5d0 \uc778\ub77c\uc778\ub418\uc11c \uc790\uc138\ud55c \ud328\ud0b7 \ud574\ub354 \ub85c\uadf8\ub97c \uc81c\uacf5\ud55c\ub2e4. \ucca0\uc800\ud55c \ubc29\uc5b4\uc758 \uc6d0\ub9ac\uac00 \uc801\uc6a9\ub418\ubbc0\ub85c iptables\uc758 \ub85c\uadf8\ub97c \uc8fc\uc758 \uae4a\uac8c \ubcf4\ub294 \uac83\uc774 \uc88b\ub2e4.<\/p>\n

 * psad\uc758 \uae30\ub2a5<\/span><\/p>\n

 \ud604 \ubc84\uc804\uc758 psad\ub294 Nmap\uacfc \uac19\uc740 \ub3c4\uad6c\ub97c \uc774\uc6a9\ud55c \ud3ec\ud2b8 \uc2a4\uce94, \ub2e4\uc591\ud55c \ubc31\ub3c4\uc5b4 \ud504\ub85c\uadf8\ub7a8\uc744 \uc704\ud55c \ud0d0\uc0ac, \ubd84\uc0b0 \uc11c\ube44\uc2a4 \uac70\ubd80 \uacf5\uaca9(DDoS) \ub3c4\uad6c, \ub124\ud2b8\uc6cc\ud0b9 \ud504\ub85c\ud1a0\ucf5c\uc744 \uc545\uc6a9\ud558\ub824\ub294 \uc2dc\ub3c4\uc640 \uac19\uc774 \ub2e4\uc591\ud55c \uc720\ud615\uc758 \uc758\uc2ec\uc2a4\ub7ec\uc6b4 \ud2b8\ub798\ud53d\uc744 \ud0d0\uc9c0\ud560 \uc218 \uc788\ub2e4. psad\ub294 fwsnort\uc640 \ud568\uaed8 \uc0ac\uc6a9\ud558\ub294 \uacbd\uc6b0 \uc560\ud50c\ub9ac\ucf00\uc774\uc158 \uacc4\uce35 \ub370\uc774\ud130\ub97c \uc870\uc0ac\ud574\uc57c \ud558\ub294 \uaddc\uce59\uc744 \ud3ec\ud568\ud574\uc11c \uc2a4\ub178\ud2b8 2.3.3 \uc804\uccb4 \uaddc\uce59\uc758 60% \uc774\uc0c1\uc744 \ud0d0\uc9c0\ud558\uace0 \uacbd\uace0\ud560 \uc218 \uc788\ub2e4.<\/p>\n

 psad\uc758 \uc880 \ub354 \ud765\ubbf8\ub85c\uc6b4 \uae30\ub2a5 \uac00\uc6b4\ub370 \ud558\ub098\ub294 \uc2a4\uce94\uc774\ub098 \uae30\ud0c0 \uc545\uc758\uc801\uc778 \ud2b8\ub798\ud53d\uc774 \uc2dc\uc791\ub418\ub294 \uc6d0\uaca9 \uc6b4\uc601\uccb4\uc81c\ub97c \uc218\ub3d9\uc801\uc73c\ub85c \ud551\uac70\ud504\ub9b0\ud305\ud560 \uc218 \uc788\ub294 \uae30\ub2a5\uc774\ub2e4. \uc608\ub97c \ub4e4\uc5b4 \ub204\uad70\uac00\uac00 \uc708\ub3c4\uc6b0 \uba38\uc2e0\uc5d0\uc11c TCP connect() \uc2a4\uce94\uc744 \uc2dc\uc791\ud558\uba74 psad\ub294 (\ub300\uac1c) \uc2a4\uce94\uc774 \uc708\ub3c4\uc6b0 XP, 2000, NT \uc911 \uc5b4\ub5a4 \uc2dc\uc2a4\ud15c\uc73c\ub85c\ubd80\ud130 \uc628 \uac83\uc778\uc9c0 \uad6c\ubd84\ud560 \uc218 \uc788\ub2e4. \uc2ec\uc9c0\uc5b4 \uc77c\ubd80 \uacbd\uc6b0 psad\ub294 \uc6d0\uaca9 \uc2dc\uc2a4\ud15c\uc758 \uc11c\ube44\uc2a4 \ud329 \ubc84\uc804\uae4c\uc9c0 \ud0d0\uc9c0\ud560 \uc218 \uc788\ub2e4. psad\uac00 \uc0ac\uc6a9\ud558\ub294 \ud551\uac70\ud504\ub9b0\ud2b8\ub294 p0f\uc5d0\uc11c \ub098\uc628 \uac83\uc774\ub2e4. \ub354\uc6b1\uc774 psad\ub294 \uc790\uc138\ud55c \uba54\uc77c\uacfc syslog \uacbd\uace0, \uc704\ud5d8 \uc218\uc900 \uc784\uacc4\uce58\uc5d0 \uae30\ubc18\ud55c IP \uc790\ub3d9 \ucc28\ub2e8 \uae30\ub2a5(\uc774 \uae30\ub2a5\uc740 \uae30\ubcf8\uc801\uc73c\ub85c \ube44\ud65c\uc131\ud654\ub418\uc5b4 \uc788\ub2e4.), \ud1b5\ud569\ub41c whois \uc9c0\uc6d0, DShield \ubcf4\uace0 \ub4f1\uc744 \uc81c\uacf5\ud55c\ub2e4.<\/p>\n

 * psad\uc758 \uc124\uce58<\/span><\/p>\n

 psad \uc124\uce58\uc5d0 \uad00\ub828\ud55c \uc790\uc138\ud55c \ub0b4\uc6a9\uc740 http:\/\/www.cipherdyne.org\/psad\/download \ub97c \ucc38\uace0\ud558\uae30 \ubc14\ub780\ub2e4. \ucc38\uace0\ub85c \uc6b0\ubd84\ud22c\/\ub370\ube44\uc548 \uc2dc\uc2a4\ud15c\uc758 \uacbd\uc6b0 \uc544\ub798\uc758 \uba85\ub839\uc5b4 \ud558\ub098\ub9cc\uc73c\ub85c psad\uc758 \uc124\uce58\ub97c \uc9c4\ud589\ud560 \uc218 \uc788\ub2e4.<\/p>\n

 # apt-get install psad<\/p><\/blockquote>\n

 \uc9c1\uc811 \uc18c\uc2a4\ub97c \ub2e4\uc6b4\ubc1b\uc544 \uc124\uce58\ub97c \ud558\ub294 \uacbd\uc6b0 install.pl \uc2a4\ud06c\ub9bd\ud2b8\ub97c \uc774\uc6a9\ud558\uac8c \ub418\ub294\ub370, install.pl \uc2a4\ud06c\ub9bd\ud2b8\ub294 \uba54\uc77c \uacbd\uace0\uac00 \uc804\uc1a1\ub420 \uba54\uc77c \uc8fc\uc18c, \uc2dc\uc2a4\ud15c\uc5d0\uc11c \ud604\uc7ac \uc2e4\ud589 \uc911\uc778 syslog \ub370\ubaac\uc758 \uc720\ud615(syslogd, syslog-ng, metalog), psad\uac00 \ud2b9\uc815 \ub85c\uae45 \uc811\ub450\uc5b4\ub97c \ud3ec\ud568\ud558\ub294 iptables \ub85c\uadf8 \uba54\uc2dc\uc9c0\ub9cc\uc744 \ubd84\uc11d\ud558\uac8c \ud560\uc9c0\uc5d0 \ub300\ud55c \uacb0\uc815, \ub85c\uadf8 \ub370\uc774\ud130\ub97c DShield \ubd84\uc0b0 IDS\ub85c \uc804\uc1a1\ud560\uc9c0\uc5d0 \ub300\ud55c \uacb0\uc815 \ub4f1\uacfc \uac19\uc740 \uba87 \uac00\uc9c0 \uc0ac\uc6a9\uc790 \uc785\ub825\uc744 \ud544\uc694\ub85c \ud55c\ub2e4. \uc9c1\uc811 \uc815\ubcf4\ub97c \uc785\ub825\ud558\uac70\ub098 \uae30\ubcf8 \uac12(\uadf8\ub0e5 \uc5d4\ud130 \ud0a4\ub97c \ub204\ub984)\uc744 \uadf8\ub300\ub85c \uc0ac\uc6a9\ud560 \uc218 \uc788\ub2e4.<\/p>\n

 * psadsms iptables \ubc29\ud654\ubcbd\uacfc \uae34\ubc00\ud788 \uc5f0\uacc4\ud558\uae30 \ub54c\ubb38\uc5d0 \uc544\uc9c1 \ub9ac\ub205\uc2a4 \uc774\uc678\uc758 \uc6b4\uc601\uccb4\uc81c\ub85c\ub294 \ud3ec\ud305\ub418\uc9c0 \uc54a\uc558\ub2e4. \uadf8\ub7ec\ub098 psad\uc758 \ub2a5\ub3d9\uc801 \uc751\ub2f5 \uae30\ub2a5\uc744 \uc0ac\uc6a9\ud560 \uc0dd\uac01\ub9cc \uc5c6\ub2e4\uba74 \ub2e4\ub978 \uc6b4\uc601\uccb4\uc81c\ub97c \uc2e4\ud589 \uc911\uc774\uc9c0\ub9cc \ubcc4\ub3c4\uc758 \ub9ac\ub205\uc2a4 \uc2dc\uc2a4\ud15c\uc73c\ub85c\ubd80\ud130 iptables \ub85c\uadf8 \uba54\uc2dc\uc9c0\ub97c \ubc1b\uc544\ub4e4\uc774\uace0 \uc788\ub294 syslog \uc11c\ubc84\uc5d0\ub294 psad\ub97c \uc124\uce58\ud560 \uc218 \uc788\ub2e4.<\/p><\/blockquote>\n

 \ub9ac\ub205\uc2a4\uc5d0 psad\ub97c \uc131\uacf5\uc801\uc73c\ub85c \uc124\uce58\ud558\uace0 \ub098\uba74 \ub85c\uceec \ud30c\uc77c\uc2dc\uc2a4\ud15c\uc5d0 \ub2e4\ub7c9\uc758 \uc0c8 \ud30c\uc77c\uacfc \ub514\ub809\ud1a0\ub9ac\uac00 \uc0dd\uc131\ub41c\ub2e4.<\/p>\n

 \ud384\uc740 \uc8fc\uc694 psad \ub370\ubaac\uc744 \uac1c\ubc1c\ud558\ub294\ub370 \uc4f0\uc778 \ud504\ub85c\uadf8\ub798\ubc0d \uc5b8\uc5b4\ub85c, \ud575\uc2ec \ud384 \ubaa8\ub4c8\uc5d0\ub294 \ud3ec\ud568\ub418\uc9c0 \uc54a\ub294 \uba87 \uac1c\uc758 \ud384 \ubaa8\ub4c8\uc774 \uc0ac\uc6a9\ub41c\ub2e4. \uc774\ub7ec\ud55c \ud384 \ubaa8\ub4c8\uc744 \/usr\/lib\/psad \uc5d0 \ubaa8\ub450 \uc124\uce58\ud568\uc73c\ub85c\uc368 psad\ub294 \uc774\ubbf8 \uc2dc\uc2a4\ud15c \ud384 \ub77c\uc774\ube0c\ub7ec\ub9ac \ud2b8\ub9ac\uc5d0 \uc124\uce58\ub41c \ud384 \ubaa8\ub4c8\uacfc psad\uac00 \ud544\uc694\ub85c \ud558\ub294 \ubaa8\ub4c8\uc744 \uc644\uc804\ud788 \ubd84\ub9ac\uc2dc\ucf1c \uc720\uc9c0\ud560 \uc218 \uc788\ub2e4.<\/p>\n

 psad\uc5d0\ub294 \ub2e4\uc74c\uacfc \uac19\uc740 \ubaa8\ub4c8\uc774 \ud544\uc694\ud558\ub2e4.<\/p>\n

 Data:Calc
 Net::Ipv4Addr
 Unix::Syslog
 IPTABLES::Parse
 IPTABLES::ChainMgr<\/p>\n

 psad, kmsgsd, pasdwatchd \uc640 \uac19\uc740 \uc138 \uac1c\uc758 \uc2dc\uc2a4\ud15c \ub370\ubaac\uc774 psad \ub97c \uad6c\uc131\ud55c\ub2e4. \uc774 \ub370\ubaac\uc740 \ubaa8\ub450 \/usr\/sbin \uc5d0 \uc124\uce58\ub418\uba74 \/etc\/psad \uc758 psad.conf \ud30c\uc77c\uc744 \ucc38\uc870\ud55c\ub2e4.<\/p>\n

 psad \uc124\uce58 \ud504\ub85c\uadf8\ub7a8\uc740 \/etc\/psad\/archive \ub514\ub809\ud1a0\ub9ac\ub3c4 \uc0dd\uc131\ud574\uc11c \ud604\uc7ac\uc758 psad \ub370\ubaac \uc124\uc815 \ud30c\uc77c\uc744 \ubcf5\uc0ac\ud55c\ub2e4. \uc774\ub294 psad \ub97c \uc7ac\uc124\uce58\ud560 \ub54c \uc774\uc804\uc758 \uc124\uc815\uc744 \ubcf4\uc874\ud558\uae30 \uc704\ud55c \uac83\uc774\ub2e4. install.pl \ud504\ub85c\uadf8\ub7a8\uc740 \ud604\uc7ac\uc758 psad \uc124\uc815 \uac12\uc744 \uc0c8\ub85c\uc6b4 \uc124\uc815 \ud30c\uc77c\ub85c \ud1b5\ud569\ud560 \uc218 \uc788\uc73c\uba70, \uc774\ub97c \ud1b5\ud574 \uc5c5\uadf8\ub808\uc774\ub4dc \ube44\uc6a9\uc744 \ucd5c\uc18c\ud654\ud560 \uc218 \uc788\ub2e4.<\/p>\n

 \uc124\uce58 \ud504\ub85c\uadf8\ub7a8\uc740 \/var \uc5d0\ub3c4 \uba87 \uac1c\uc758 \ud30c\uc77c\uacfc \ub514\ub809\ud130\ub9ac\ub97c \uc0dd\uc131\ud55c\ub2e4. \uc6b0\uc120 \/var\/lib\/psadfifo \uc5d0 \uba85\uba85\uba85 \ud30c\uc774\ud504\ub97c \uc0dd\uc131\ud558\uace0 \/var\/log\/psad \ub514\ub809\ud1a0\ub9ac\uc640 \ud30c\uc77c \/var\/log\/psad\/fwdata \ub97c \uc0dd\uc131\ud55c\ub2e4. \ub05d\uc73c\ub85c install.pl \uc2a4\ud06c\ub9bd\ud2b8\ub294 \uc124\uce58 \ub85c\uadf8\ub97c \/var\/log\/psad\/install.log \uc5d0 \uc720\uc9c0\ud55c\ub2e4. \uc2e4\ud589 \uc2dc psad \uc758 \uc8fc\uc694 \ub3d9\uc791 \ub514\ub809\ud1a0\ub9ac(\uc218\uc0c1\ud55c \ub124\ud2b8\uc6cc\ud06c \ud2b8\ub798\ud53d\uacfc \uad00\ub828\ub41c IP \uc8fc\uc18c\ub97c \uae30\ub85d\ud558\ub294 \ub514\ub809\ud1a0\ub9ac)\ub3c4 \/var\/log\/psad \ub2e4.<\/p>\n

 <\/p>\n","protected":false},"excerpt":{"rendered":"

 * \uc5ed\uc0ac  psad \uc18c\ud504\ud2b8\uc6e8\uc5b4 \ud504\ub85c\uc81d\ud2b8\ub294 1999\ub144 \uac00\uc744, \ubc14\uc2a4\ud2f0\uc720 \uac1c\ubc1c\ud300\uc774 \ubc14\uc2a4\ud2f0\uc720\uac00 \uacbd\ub7c9\uc758 \ub124\ud2b8\uc6cc\ud06c \uce68\uc785 \ud0d0\uc9c0 \ucef4\ud3ec\ub10c\ud2b8\ub97c \uc81c\uacf5\ud574\uc57c \ud55c\ub2e4\uace0 \uacb0\uc815\ud588\uc744 \ub54c Bastille \ub9ac\ub205\uc2a4\uc758 \uc77c\ubd80\ub85c \uc2dc\uc791\ud588\ub2e4. \ub2f9\uc2dc \ud53c\ud130 \uc653\ud0a8\uc2a4\ub294 \uc9c0\uae08\uae4c\uc9c0\ub3c4 Bastille\uc640 \ud568\uaed8 \uc81c\uacf5\ub418\ub294 \ub9e4\uc6b0 \ub6f0\uc5b4\ub09c \ubc29\ud654\ubcbd \uc2a4\ud06c\ub9bd\ud2b8\ub97c \uac1c\ubc1c \uc911\uc774\uc5c8\uc73c\ubbc0\ub85c \ubc29\ud654\ubcbd \ub85c\uadf8\uac00 \uc81c\uacf5\ud558\ub294 \uc815\ubcf4\uc5d0 … Continue reading →<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[63],"tags":[311,809],"_links":{"self":[{"href":"http:\/\/pchero21.com\/index.php?rest_route=\/wp\/v2\/posts\/726"}],"collection":[{"href":"http:\/\/pchero21.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/pchero21.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/pchero21.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/pchero21.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=726"}],"version-history":[{"count":0,"href":"http:\/\/pchero21.com\/index.php?rest_route=\/wp\/v2\/posts\/726\/revisions"}],"wp:attachment":[{"href":"http:\/\/pchero21.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=726"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/pchero21.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=726"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/pchero21.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=726"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}