Fail2Ban to protect various server types from intrusions


Posted: settembre 24th, 2013 | Author: | Filed under: Administration, English, Guide, Howto, recensione | Tags: , , , , , , , , , | No Comments »


It’s quite normal to see some ip addresses that try to connect to my ssh server with bruteforce attacks. Fail2Ban is the solution to block these attacks.

Setup it’s very easy:

aptitude install fail2ban
cd /etc/fail2ban
sudo cp jail.conf jail.local

now we can edit jail.local to change the default configuration.

to enable email notifications, we have to change the line:

action = %(action_)s

with

action = %(action_mw)s

everything is configured right now, you will receive an email notification for each attack blocked.

 



Leave a Reply

  • Articoli Recenti:

  • Tag

  • Categorie

  • Meta

  • Licenza Creative Commons

    Copyright © 2017, | ldlabs.org – Blog is proudly powered by WordPress All rights Reserved | Theme by Ryan McNair modified By Francesco Apollonio

    Smilla Magazine Il Bloggatore iwinuxfeed.altervista.org Feedelissimo - tecnologia WebShake - tecnologia