Found some cool inspiration for new tools in the feed of @neuroexception, soon gonna add #ansible, #authelia, #failtoban and #immich to my setup!

@dee This presents a #security risk to any organisation that depends on #failtoban but is not supporting it.

Has anybody successfully championed for their org to make recurring donations to the open source software projects they rely on? How did you do it? Any challenges you confronted?

Nowadays, #VPS providers would save their own CPU and network resources, as well as the customer's time, if they set up virtual machine templates with #fail2ban already configured, because the annoying password guessing (brute force) attacks start right after a machine is booted for the first time. This would be a much more helpful customization than putting ASCII art in motd files.

#InfoSec #ssh #failtoban #BruteForce

@nixCraft Eeyupp...

That's why one has to use #FailToBan very aggressively as well as blocklists AND ideally pubkey-based auth.

I mean, I do pull a lot of blocklists on top of that because there is no legitimate reason not to use #Spamhaus #DROP blocklists...

https://github.com/greyhat-academy/lists.d/blob/main/blocklists.list.tsv

Make sure you disable password logins and ideally only allow named users with SSH.

Just stood up some new VMs and the logs are already flooded with random SSH logins...!

#ssh #cert #security #failtoban #firewall #Linux