前提是需要获取非法登录用户的IP,并作为参数传给脚本
#!/bin/bash
if [ -z $1 ]
then
echo "`basename $0` enter error!"
fi
host_name=`who | grep "$1" | awk '{print $2}'`
pid=`ps aux | grep "$host_name" | grep "bash" | awk '{print $2}'`
echo $pid | tee pid
sed 's/ /\n/gw pid_file' pid
while read LINE
do
kill -9 $LINE
done < pid_file
#count=`awk '{print NF}' pid`
#echo $count
#kill -9 $pid