Archivo de la etiqueta: fail2ban

Proactive protection enhancements for fail2ban – Part 1

Update 2015/August/16: YOU MIGHT WISH TO CHECK THIS OUT INSTEAD: http://blogs.buanzo.com.ar/2015/08/introducing-fail2ban-zmq-tools-a-fail2ban-clustering-solution-based-on-zeromq.html Introducing fail2ban, and first steps towards sharing attacker’s IP by Arturo ‘Buanzo’ Busleiman Fail2ban is a lovely python-based tool written by Cyril Jaquier that monitors different logfiles for lines … Sigue leyendo

Publicado en General | Etiquetado , , , | 2 comentarios

FIX: fail2ban does not work in Ubuntu 10.04

In Ubuntu 10.04, rsyslogd is used. That means that, by default, it compresses repeated syslog messages like this: Failed password for root from 1.2.3.4 port 22 ssh2 last message repeated 5 time So, fail2ban count would be ‘1’ for the … Sigue leyendo

Publicado en General | Etiquetado , | Comentarios desactivados en FIX: fail2ban does not work in Ubuntu 10.04

I’m now a fail2ban developer :D

Cyral Jaquier, fail2ban’s author, has given me write access to fail2ban’s subversion repository. 😀 I’m very happy!

Publicado en General | Etiquetado | Comentarios desactivados en I’m now a fail2ban developer :D

Fail2ban rules for lighttpd fastcgi alerts

So, if you don’t know what fail2ban is.. then you should be visiting their site first 🙂 – In short, it’s a simple tool for Unix-based systems that monitors log files while applying regular expression rules searching for a match. … Sigue leyendo

Publicado en General | Etiquetado , | 10 comentarios