On Thu, Dec 22, 2016 at 03:13:33PM +0000, Aero Maxx D wrote:
I read somewhere that someone could just hammer the authentication
with multiple tries until they get access!
Without further protection, yep. Several things in Fedora you could
use:
- mod_evasive -- an apache module to protect against brute-force
attacks
- fail2ban -- not just for ssh; have it follow the logs and block at
the firewall level
- pam_shield -- count login attempts and ban based on that
--
Matthew Miller
<mattdm(a)fedoraproject.org>
Fedora Project Leader