[GLLUG] Maybe OT - Fail2ban and what triggers it
Imran Chaudhry
ichaudhry at gmail.com
Mon Mar 18 13:08:36 UTC 2013
Interesting analysis there.
The source country reminded me of recent news articles about "Unit
61398" [0] and military-sponsored attacks.
You've been given good advice on how to secure SSH. I use fail2ban too
in tandem with denyhosts [1]. Be warned that you must configure it
carefully or else could find yourself "locked out"!
[0] http://www.theregister.co.uk/2013/02/19/china_apt_report_mandiant/
[1] http://denyhosts.sourceforge.net/
--
GPG Key fingerprint = B323 477E F6AB 4181 9C65 F637 BC5F 7FCC 9CC9 CC7F
http://about.me/imranchaudhry
More information about the GLLUG
mailing list