lock_attempts_ssh
Differences
This shows you the differences between two versions of the page.
Next revision | Previous revisionNext revisionBoth sides next revision | ||
lock_attempts_ssh [2014/09/01 03:20] – created k0kad | lock_attempts_ssh [2014/09/01 03:24] – k0kad | ||
---|---|---|---|
Line 4: | Line 4: | ||
~K0KAD | ~K0KAD | ||
- | Step One—Install Fail2Ban | + | **Step One—Install Fail2Ban** |
Because fail2ban is not available from CentOS, we should start by downloading the EPEL repository: | Because fail2ban is not available from CentOS, we should start by downloading the EPEL repository: | ||
- | rpm -Uvh http:// | + | '' |
Follow up by installing fail2ban: | Follow up by installing fail2ban: | ||
- | yum install fail2ban | + | '' |
- | Step Two—Copy the Configuration File | + | |
+ | **Step Two—Copy the Configuration File** | ||
The default fail2ban configuration file is location at / | The default fail2ban configuration file is location at / | ||
Line 17: | Line 21: | ||
After the file is copied, you can make all of your changes within the new jail.local file. Many of possible services that may need protection are in the file already. Each is located in its own section, configured and turned off. | After the file is copied, you can make all of your changes within the new jail.local file. Many of possible services that may need protection are in the file already. Each is located in its own section, configured and turned off. | ||
- | Step Three—Configure defaults in Jail.Local | + | **Step Three—Configure defaults in Jail.Local** |
Open up the the new fail2ban configuration file: | Open up the the new fail2ban configuration file: | ||
- | vi / | + | '' |
The first section of defaults covers the basic rules that fail2ban will follow. If you want to set up more nuanced protection for your virtual private server, you can customize the details in each section. | The first section of defaults covers the basic rules that fail2ban will follow. If you want to set up more nuanced protection for your virtual private server, you can customize the details in each section. | ||
lock_attempts_ssh.txt · Last modified: 2014/09/01 03:32 by k0kad