Installed and configurerd fail2ban to protect my SSH deamon from attacks. It will check for failed password and user attempts and build a iptable rule to block that IP for [bantime] minutes. # sudo apt-get install fail2ban Make som tuning in /etc/fail2ban/ fail2ban.conf - set log level jail.conf - set bantime and maxretry Attacks are logged in /var/log/fail2ban.log |
|
|