this post was submitted on 06 Oct 2023
13 points (88.2% liked)

Hacker News

4122 readers
2 users here now

This community serves to share top posts on Hacker News with the wider fediverse.

Rules0. Keep it legal

  1. Keep it civil and SFW
  2. Keep it safe for members of marginalised groups

founded 1 year ago
MODERATORS
[email protected]
13
Fail2Ban – Daemon to ban hosts that cause multiple authentication errors (github.com)
submitted 1 year ago by [email protected] to c/[email protected]
6 comments fedilink hide all child comments
 

There is a discussion on Hacker News, but feel free to comment here as well.

top 6 comments
sorted by: hot top controversial new old
[–] [email protected] 4 points 1 year ago (1 children)

This or similar software is basically required is you have an SSH server accessible over the internet

Don't make the mistake I did and assume that your server is too small or inconsequential to get hacked - a hacking attempt is a matter of "if" not when, but turning off password Auth and adding fail2ban will get you locked up tight

[–] [email protected] 1 points 1 year ago

In the early days of my home server I remember looking at the logs and just watching them scroll with failed attempts. It was just a small box for messing about on with a dynamic IP. Older and wiser now.

[–] [email protected] 1 points 1 year ago (1 children)

Old software that can actually be superceded by some newer tech if someone feels like doing so.

Easy to use, lots of documentation. 10/10

[–] [email protected] 2 points 1 year ago

Suricata + fail2ban has served me well

[–] [email protected] 1 points 1 year ago (1 children)

These days I would recommend CrowdSec over fail2ban.

[–] [email protected] 1 points 1 year ago

Does CrowdSec have abuseipdb.com integration (and endorsement)?