Forum: TFSI

RE: preventing brute forc

From Beanzilla@21:1/182 to Beanzilla on Thu Apr 8 12:50:00 2021

Beanzilla wrote to tonic <=-

On 04/07/2021 8:36 pm tonic said...

To> I've never super investigated how enigma handles ssh calls but I'm
To> curious if anyone is using a tool like SSHGuard or Fail2Ban to prevent
To> bot spam on these ports.

I know I wrote a tiny Python script that essentially tails the Enigma logs, when someone attempts to login with invalid/not allowed usernames (root and such) that I essentially act like Fail2Ban. (I used the IP
table and stored for myself their IP and the current time, so I could remove them from the IP table after so many hours)

If you want to take a look at my Python script I just put it on GitHub

https://github.com/Beanzilla/failUser

Take Care,
Beanzilla

... !Panic: Error Between Chair and Keyboard!
--- MultiMail/Linux v0.49

--- Talisman v0.16-dev (Linux/x86_64)
* Origin: HappyLand v2.0 - telnet://happylandbbs.com:11892/ (21:1/182)