How we handle attacks?
Miroslav Suchý
msuchy at redhat.com
Mon Oct 7 10:56:35 UTC 2013
On 10/07/2013 05:23 AM, Anshu Prateek wrote:
> Most of these logins are automated bot attempts. On my personal servers, one easy way I have found is changing the
> default port to something else and that cuts down my lastb by almost 99%!
Yes, I do that for my personal servers as well (and it works really good). But I do not think this is good approach in
organization when people fluctuate quite often (think about apprentice group).
fail2ban looks good, I'm trying it right now. Unless somebody will object I will add it to ./tasks/cloud_setup_basic.yml
so all cloud images will use it.
--
Miroslav Suchy, RHCE, RHCDS
Red Hat, Software Engineer, #brno, #devexp, #fedora-buildsys
More information about the infrastructure
mailing list