143
How do you deal with malicious requests to your servers? (lemmy.dbzer0.com)
submitted 2 years ago* (last edited 2 years ago) by jcal@lemmy.dbzer0.com to c/selfhosted@lemmy.world
77 comments fedilink hide all child comments

I put up a vps with nginx and the logs show dodgy requests within minutes, how do you guys deal with these?

Edit: Thanks for the tips everyone!

you are viewing a single comment's thread
view the rest of the comments
[-] takeda@kbin.social 8 points 2 years ago

I use fail2ban and add detection (for example I noticed that after I implemented it for ssh, they started using SMTP for brute force, so had to add that one as well.

I also have another rule that observes fail2ban log and adds repeated offenders to a long term black list.

[-] sifrmoja@mastodon.social 2 points 2 years ago

@takeda @jcal Have you tried CrowdSec?

[-] takeda@kbin.social 1 points 2 years ago

I did not, but it looks interesting, thanks

this post was submitted on 08 Jul 2023
143 points (100.0% liked)

Selfhosted

59794 readers
315 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam.

  3. Posts here are to be centered around self-hosting. Please ensure it is clear in your post how it relates to self-hosting.

  4. Don't duplicate the full text of your blog or git here. Just post the link for folks to click.

  5. Submission headline should match the article title.

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 3 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
ayyy@sh.itjust.works
curbstickle@anarchist.nexus
curbstickle_lw@lemmy.world