13
Fail2Ban – Daemon to ban hosts that cause multiple authentication errors (github.com)
submitted 1 year ago by haxor@derp.foo to c/hackernews@derp.foo
6 comments fedilink hide all child comments

There is a discussion on Hacker News, but feel free to comment here as well.

top 6 comments
sorted by: hot top controversial new old
[-] bitsplease@lemmy.ml 4 points 1 year ago

This or similar software is basically required is you have an SSH server accessible over the internet

Don't make the mistake I did and assume that your server is too small or inconsequential to get hacked - a hacking attempt is a matter of "if" not when, but turning off password Auth and adding fail2ban will get you locked up tight

[-] PFShady@lemmy.world 1 points 1 year ago

In the early days of my home server I remember looking at the logs and just watching them scroll with failed attempts. It was just a small box for messing about on with a dynamic IP. Older and wiser now.

[-] gerbilOFdoom@beehaw.org 1 points 1 year ago

Old software that can actually be superceded by some newer tech if someone feels like doing so.

Easy to use, lots of documentation. 10/10

[-] 4am@lemm.ee 2 points 1 year ago

Suricata + fail2ban has served me well

[-] lemmyng@beehaw.org 1 points 1 year ago

These days I would recommend CrowdSec over fail2ban.

[-] ZiemekZ@lemm.ee 1 points 1 year ago

Does CrowdSec have abuseipdb.com integration (and endorsement)?

this post was submitted on 06 Oct 2023
13 points (88.2% liked)

Hacker News

14 readers
2 users here now

This community serves to share top posts on Hacker News with the wider fediverse.

Rules0. Keep it legal

  1. Keep it civil and SFW
  2. Keep it safe for members of marginalised groups

founded 1 year ago
MODERATORS
haxor@derp.foo