So some folks have been trying to break into the server via SSH and I realize I should had installed some kind of brute force detection. Now looking at the alternatives and found two. APF/BFD both from R-Fx Networks and the open source fail2ban.
Now I'm reluctant to install anything beyond the necessary. APF/BFD seems to be quite popular. There's even a third party DA script that installs it automatically. But I hate to be lock out of my own server again. And APF doesn't seem to have been updated for 3 years. Its readme file copyright notice stopped at 2004.
fail2ban seems more safe, although it's still a 0.8 product. But I'm still researching.
No comments:
Post a Comment