How we handle attacks?
Kevin Fenzi
kevin at scrye.com
Thu Oct 3 15:29:36 UTC 2013
On Thu, 3 Oct 2013 07:40:10 -0700
Toshio Kuratomi <a.badger at gmail.com> wrote:
> On Thu, Oct 03, 2013 at 03:10:13PM +0200, Miroslav Suchý wrote:
> > On 10/03/2013 02:55 PM, Jhoanir Torres wrote:
> > >Is highly recommended use 'Fail2Ban' in victim servers.
> >
> > And do we already use it? Because git grep in ansible.git returns
> > zero to me.
> >
> We use denyhosts which serves a similar purpose but bans ips in a
> different way.
Yeah, we use denyhosts.
We might want to look at all the options in this space again at some
point however. I think denyhosts isn't maintained much upstream anymore
and thus is not porting to journald, so with newer releases it's likely
to stop working. ;(
kevin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: not available
URL: <http://lists.fedoraproject.org/pipermail/infrastructure/attachments/20131003/8e25b23c/attachment.sig>
More information about the infrastructure
mailing list