[deleted]
Handling malicious requests with fail2ban
Submitted 10 months ago by cm0002@lemmy.world to cybersecurity@infosec.pub
https://sergiocipriano.com/fail2ban.html
Comments
bacon_pdp@lemmy.world 10 months ago
adminofoz@lemmy.cafe 10 months ago
Fr tho why does no one do port knocking? I know its not a comprehensive solution but it’s a pretty cool component imo.
Ajen@sh.itjust.works 10 months ago
Port knocking is cool, but tunneling everything through ssh or a VPN (with strong keys, not passwords) is more secure.
Ajen@sh.itjust.works 10 months ago
The thing about fail2ban is that it’s only affective against automated scans and script kiddies, and if you keep things updated and configured correctly then they aren’t a threat. Any adversary that can break encryption or exploit a zero day can also get around fail2ban.