Stopping SSHD bruteforcing with fail2ban

27.11.2005 at 13:58

Ok today i had enough from those script kiddys trying to break into one of my boxes by bruteforcing my sshd. So i googled a bit and found fail2ban from the homepage:

Fail2Ban scans log files and bans IP that makes too many password
 failures. It updates firewall rules to reject the IP address.

Of course still better would be to disallow all authentication methods but key-files. Another approach to solve this problem may be portknocking.

Marc

Comments (0)

There are currently no comments available