commit 51141d860c7f45c6d4b18571ace600094d648e1c Author: licsber Date: Wed Jan 22 11:28:06 2025 +0800 init commit. diff --git a/.dockerignore b/.dockerignore new file mode 100644 index 0000000..da8b189 --- /dev/null +++ b/.dockerignore @@ -0,0 +1,3 @@ +.git/ +docker-compose.yaml +README.md diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000..c65ee56 --- /dev/null +++ b/.gitignore @@ -0,0 +1 @@ +sqlite.db diff --git a/Dockerfile b/Dockerfile new file mode 100644 index 0000000..8be5ccb --- /dev/null +++ b/Dockerfile @@ -0,0 +1,10 @@ +FROM golang:alpine AS builder +WORKDIR /licsber +COPY . . +RUN go env -w GOPROXY=https://goproxy.cn,direct +RUN go build -ldflags="-w -s" . + +FROM scratch +COPY --from=builder /licsber/myfakessh /licsber/myfakessh +EXPOSE 22 +ENTRYPOINT ["/licsber/myfakessh"] diff --git a/README.md b/README.md new file mode 100644 index 0000000..f2aab13 --- /dev/null +++ b/README.md @@ -0,0 +1,10 @@ +# MyFakeSSH + +```bash +go mod init myfakessh +go mod tidy +``` + +## 参考 + +https://github.com/fffaraz/fakessh diff --git a/db.go b/db.go new file mode 100644 index 0000000..451ca9b --- /dev/null +++ b/db.go @@ -0,0 +1,79 @@ +package main + +import ( + "database/sql" + "fmt" + "log" + "net" + "strconv" + "time" + + "golang.org/x/crypto/ssh" + _ "modernc.org/sqlite" +) + +var ( + db *sql.DB + dbPath = "./sqlite.db" +) + +func initDB() { + _db, err := sql.Open("sqlite", dbPath) + if err != nil { + log.Fatal(err) + } + db = _db + + createTableSQL := ` + CREATE TABLE IF NOT EXISTS connect_attempts ( + id INTEGER PRIMARY KEY AUTOINCREMENT, + time TEXT NOT NULL, + ip TEXT NOT NULL, + port INTEGER NOT NULL + ); + CREATE TABLE IF NOT EXISTS login_attempts ( + id INTEGER PRIMARY KEY AUTOINCREMENT, + time TEXT NOT NULL, + ip TEXT NOT NULL, + port INTEGER NOT NULL, + client_version TEXT NOT NULL, + username TEXT NOT NULL, + password TEXT NOT NULL + );` + _, err = db.Exec(createTableSQL) + if err != nil { + log.Fatal(err) + } + fmt.Println("Table created successfully") +} + +func logConnect(conn net.Conn) { + currentTime := time.Now().Format("2006-01-02 15:04:05") + remoteAddr := conn.RemoteAddr().String() + host, port, _ := net.SplitHostPort(remoteAddr) + portInt, _ := strconv.Atoi(port) + + insertSQL := `INSERT INTO connect_attempts (time, ip, port) VALUES (?, ?, ?)` + _, err := db.Exec(insertSQL, currentTime, host, portInt) + if err != nil { + log.Println("Failed to insert connect attempt:", err) + return + } +} + +func logLogin(conn ssh.ConnMetadata, password []byte) { + currentTime := time.Now().Format("2006-01-02 15:04:05") + remoteAddr := conn.RemoteAddr().String() + host, port, _ := net.SplitHostPort(remoteAddr) + portInt, _ := strconv.Atoi(port) + clientVersion := string(conn.ClientVersion()) + username := conn.User() + passwordStr := string(password) + + insertSQL := `INSERT INTO login_attempts (time, ip, port, client_version, username, password) VALUES (?, ?, ?, ?, ?, ?)` + _, err := db.Exec(insertSQL, currentTime, host, portInt, clientVersion, username, passwordStr) + if err != nil { + log.Fatal("Failed to insert login attempt:", err) + return + } +} diff --git a/docker-compose.yaml b/docker-compose.yaml new file mode 100644 index 0000000..67c3850 --- /dev/null +++ b/docker-compose.yaml @@ -0,0 +1,13 @@ +services: + MyFakeSSH: + build: . + image: licsber/myfakessh:latest + restart: always + container_name: myfakessh + command: /log + volumes: + - /licsber/docker/myfakessh:/log + - /etc/localtime:/etc/localtime:ro + - /etc/timezone:/etc/timezone:ro + ports: + - '22:22' diff --git a/go.mod b/go.mod new file mode 100644 index 0000000..889b1b7 --- /dev/null +++ b/go.mod @@ -0,0 +1,20 @@ +module git.licsber.site/go/myfakessh + +go 1.23 + +require ( + golang.org/x/crypto v0.32.0 + modernc.org/sqlite v1.34.5 +) + +require ( + github.com/dustin/go-humanize v1.0.1 // indirect + github.com/google/uuid v1.6.0 // indirect + github.com/mattn/go-isatty v0.0.20 // indirect + github.com/ncruces/go-strftime v0.1.9 // indirect + github.com/remyoudompheng/bigfft v0.0.0-20230129092748-24d4a6f8daec // indirect + golang.org/x/sys v0.29.0 // indirect + modernc.org/libc v1.55.3 // indirect + modernc.org/mathutil v1.6.0 // indirect + modernc.org/memory v1.8.0 // indirect +) diff --git a/go.sum b/go.sum new file mode 100644 index 0000000..56eed10 --- /dev/null +++ b/go.sum @@ -0,0 +1,47 @@ +github.com/dustin/go-humanize v1.0.1 h1:GzkhY7T5VNhEkwH0PVJgjz+fX1rhBrR7pRT3mDkpeCY= +github.com/dustin/go-humanize v1.0.1/go.mod h1:Mu1zIs6XwVuF/gI1OepvI0qD18qycQx+mFykh5fBlto= +github.com/google/pprof v0.0.0-20240409012703-83162a5b38cd h1:gbpYu9NMq8jhDVbvlGkMFWCjLFlqqEZjEmObmhUy6Vo= +github.com/google/pprof v0.0.0-20240409012703-83162a5b38cd/go.mod h1:kf6iHlnVGwgKolg33glAes7Yg/8iWP8ukqeldJSO7jw= +github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0= +github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo= +github.com/mattn/go-isatty v0.0.20 h1:xfD0iDuEKnDkl03q4limB+vH+GxLEtL/jb4xVJSWWEY= +github.com/mattn/go-isatty v0.0.20/go.mod h1:W+V8PltTTMOvKvAeJH7IuucS94S2C6jfK/D7dTCTo3Y= +github.com/ncruces/go-strftime v0.1.9 h1:bY0MQC28UADQmHmaF5dgpLmImcShSi2kHU9XLdhx/f4= +github.com/ncruces/go-strftime v0.1.9/go.mod h1:Fwc5htZGVVkseilnfgOVb9mKy6w1naJmn9CehxcKcls= +github.com/remyoudompheng/bigfft v0.0.0-20230129092748-24d4a6f8daec h1:W09IVJc94icq4NjY3clb7Lk8O1qJ8BdBEF8z0ibU0rE= +github.com/remyoudompheng/bigfft v0.0.0-20230129092748-24d4a6f8daec/go.mod h1:qqbHyh8v60DhA7CoWK5oRCqLrMHRGoxYCSS9EjAz6Eo= +golang.org/x/crypto v0.32.0 h1:euUpcYgM8WcP71gNpTqQCn6rC2t6ULUPiOzfWaXVVfc= +golang.org/x/crypto v0.32.0/go.mod h1:ZnnJkOaASj8g0AjIduWNlq2NRxL0PlBrbKVyZ6V/Ugc= +golang.org/x/mod v0.16.0 h1:QX4fJ0Rr5cPQCF7O9lh9Se4pmwfwskqZfq5moyldzic= +golang.org/x/mod v0.16.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c= +golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= +golang.org/x/sys v0.29.0 h1:TPYlXGxvx1MGTn2GiZDhnjPA9wZzZeGKHHmKhHYvgaU= +golang.org/x/sys v0.29.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA= +golang.org/x/term v0.28.0 h1:/Ts8HFuMR2E6IP/jlo7QVLZHggjKQbhu/7H0LJFr3Gg= +golang.org/x/term v0.28.0/go.mod h1:Sw/lC2IAUZ92udQNf3WodGtn4k/XoLyZoh8v/8uiwek= +golang.org/x/tools v0.19.0 h1:tfGCXNR1OsFG+sVdLAitlpjAvD/I6dHDKnYrpEZUHkw= +golang.org/x/tools v0.19.0/go.mod h1:qoJWxmGSIBmAeriMx19ogtrEPrGtDbPK634QFIcLAhc= +modernc.org/cc/v4 v4.21.4 h1:3Be/Rdo1fpr8GrQ7IVw9OHtplU4gWbb+wNgeoBMmGLQ= +modernc.org/cc/v4 v4.21.4/go.mod h1:HM7VJTZbUCR3rV8EYBi9wxnJ0ZBRiGE5OeGXNA0IsLQ= +modernc.org/ccgo/v4 v4.19.2 h1:lwQZgvboKD0jBwdaeVCTouxhxAyN6iawF3STraAal8Y= +modernc.org/ccgo/v4 v4.19.2/go.mod h1:ysS3mxiMV38XGRTTcgo0DQTeTmAO4oCmJl1nX9VFI3s= +modernc.org/fileutil v1.3.0 h1:gQ5SIzK3H9kdfai/5x41oQiKValumqNTDXMvKo62HvE= +modernc.org/fileutil v1.3.0/go.mod h1:XatxS8fZi3pS8/hKG2GH/ArUogfxjpEKs3Ku3aK4JyQ= +modernc.org/gc/v2 v2.4.1 h1:9cNzOqPyMJBvrUipmynX0ZohMhcxPtMccYgGOJdOiBw= +modernc.org/gc/v2 v2.4.1/go.mod h1:wzN5dK1AzVGoH6XOzc3YZ+ey/jPgYHLuVckd62P0GYU= +modernc.org/libc v1.55.3 h1:AzcW1mhlPNrRtjS5sS+eW2ISCgSOLLNyFzRh/V3Qj/U= +modernc.org/libc v1.55.3/go.mod h1:qFXepLhz+JjFThQ4kzwzOjA/y/artDeg+pcYnY+Q83w= +modernc.org/mathutil v1.6.0 h1:fRe9+AmYlaej+64JsEEhoWuAYBkOtQiMEU7n/XgfYi4= +modernc.org/mathutil v1.6.0/go.mod h1:Ui5Q9q1TR2gFm0AQRqQUaBWFLAhQpCwNcuhBOSedWPo= +modernc.org/memory v1.8.0 h1:IqGTL6eFMaDZZhEWwcREgeMXYwmW83LYW8cROZYkg+E= +modernc.org/memory v1.8.0/go.mod h1:XPZ936zp5OMKGWPqbD3JShgd/ZoQ7899TUuQqxY+peU= +modernc.org/opt v0.1.3 h1:3XOZf2yznlhC+ibLltsDGzABUGVx8J6pnFMS3E4dcq4= +modernc.org/opt v0.1.3/go.mod h1:WdSiB5evDcignE70guQKxYUl14mgWtbClRi5wmkkTX0= +modernc.org/sortutil v1.2.0 h1:jQiD3PfS2REGJNzNCMMaLSp/wdMNieTbKX920Cqdgqc= +modernc.org/sortutil v1.2.0/go.mod h1:TKU2s7kJMf1AE84OoiGppNHJwvB753OYfNl2WRb++Ss= +modernc.org/sqlite v1.34.5 h1:Bb6SR13/fjp15jt70CL4f18JIN7p7dnMExd+UFnF15g= +modernc.org/sqlite v1.34.5/go.mod h1:YLuNmX9NKs8wRNK2ko1LW1NGYcc9FkBO69JOt1AR9JE= +modernc.org/strutil v1.2.0 h1:agBi9dp1I+eOnxXeiZawM8F4LawKv4NzGWSaLfyeNZA= +modernc.org/strutil v1.2.0/go.mod h1:/mdcBmfOibveCTBxUl5B5l6W+TTH1FXPLHZE6bTosX0= +modernc.org/token v1.1.0 h1:Xl7Ap9dKaEs5kLoOQeQmPWevfnk/DM5qcLcYlA8ys6Y= +modernc.org/token v1.1.0/go.mod h1:UGzOrNV1mAFSEB63lOFHIpNRUVMvYTc6yu1SMY/XTDM= diff --git a/main.go b/main.go new file mode 100644 index 0000000..3d5b038 --- /dev/null +++ b/main.go @@ -0,0 +1,69 @@ +package main + +import ( + "crypto/rand" + "crypto/rsa" + "errors" + "log" + "net" + "os" + "time" + + "golang.org/x/crypto/ssh" +) + +var ( + errBadPassword = errors.New("permission denied") + serverVersions = []string{ + "SSH-2.0-OpenSSH_9.9", + } +) + +func main() { + if len(os.Args) > 1 { + dbPath = os.Args[1] + "/sqlite.db" + } + + initDB() + defer db.Close() + + serverConfig := &ssh.ServerConfig{ + MaxAuthTries: 6, + PasswordCallback: passwordCallback, + ServerVersion: serverVersions[0], + } + + privateKey, _ := rsa.GenerateKey(rand.Reader, 2048) + signer, _ := ssh.NewSignerFromSigner(privateKey) + serverConfig.AddHostKey(signer) + + listener, err := net.Listen("tcp", ":22") + if err != nil { + log.Fatal("Failed to listen:", err) + return + } + defer listener.Close() + + for { + conn, err := listener.Accept() + if err != nil { + log.Fatal("Failed to accept:", err) + break + } + go handleConn(conn, serverConfig) + } +} + +func passwordCallback(conn ssh.ConnMetadata, password []byte) (*ssh.Permissions, error) { + log.Println(conn.RemoteAddr(), string(conn.ClientVersion()), conn.User(), string(password)) + logLogin(conn, password) + time.Sleep(100 * time.Millisecond) + return nil, errBadPassword +} + +func handleConn(conn net.Conn, serverConfig *ssh.ServerConfig) { + defer conn.Close() + log.Println(conn.RemoteAddr()) + logConnect(conn) + ssh.NewServerConn(conn, serverConfig) +}