Jump to content
Security Installer Community

Fail2Ban


james.wilson

Recommended Posts

Im been watching a huge increase on attacks on our servers (all of them bar 1) and for the last few weeks have been using the above app to protect them. What are others doing on their public facing machines?

securitywarehouse Security Supplies from Security Warehouse

Trade Members please contact us for your TSI vetted trade discount.

Link to comment
Share on other sites

I wasn't suggesting you update the server in your trunks LOL I thought you might like to have a swim in the pool after. Have you found your PP yet?

f me it's Barrymore.

Nothing is foolproof to a sufficiently talented fool.


Link to comment
Share on other sites

I work for a small-ish game server host and we primarily use Windows for our boxes. Our public facing hosts mainly were getting hit by RDP brute force/dictionary attacks, even though we changed the RDP ports from the default 3389 to a random port. We solved this by firewalling off RDP connections to limited IPs (internal IPs and a jumpbox ip) using bog standard Windows Firewall on the individual boxes and surprisingly it was incredibly effective. For remote maintenance, we bought a small virtual server from these guys which acts as an SSH jumpbox (with Fail2Ban configured) which all external RDP connections are forced to go through otherwise they get bounced. (Moved to an RDP client which allows for using SSH Jumpboxes like MobaXTerm and all was well!)

 

Get your credentials for the jumpbox wrong 3 times and it's then a pain in the **** call to me to get the IP ban lifted. 

Then we forced 64 character random passwords for all admin/rdp accounts, because we are great people.

Fun, fun... fun?

Edited by effortless
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use.