Fail2ban: Difference between revisions
No edit summary |
No edit summary |
||
| Line 16: | Line 16: | ||
Still not working yet... | Still not working yet... | ||
Check out port knocking, and deep dive into how to set up a truly painful tarpit for attackers | |||
Revision as of 13:35, 30 November 2017
fail2ban watches log files for misbehavior, and creates firewall rules, to stop things like brute force ssh attempts.
It takes a few commands to get going though, and I guess it doesn't run as a normal service?
🌵 m@bitpost [~]sudo fail2ban-client add mdmjail Added jail mdmjail 🌵 m@bitpost [~] sudo fail2ban-client start mdmjail Jail started 🌵 m@bitpost [~] sudo fail2ban-client set mdmjail addlogpath /var/log/messages Current monitored log file(s): `- /var/log/messages 🌵 m@bitpost [~]sudo fail2ban-client status Status |- Number of jail: 1 `- Jail list: mdmjail
Still not working yet...
Check out port knocking, and deep dive into how to set up a truly painful tarpit for attackers