Discussion in 'Installation/Configuration' started by IKShadow, Nov 21, 2006.

  1. IKShadow

    IKShadow New Member


    I have a lot of breakin attempts on my server (you can see few exemples bellow).

    Is it possible to set some kind of auto ban for IP's after invalid user or password is entered 10 times.

  2. falko

    falko Super Moderator ISPConfig Developer

  3. IKShadow

    IKShadow New Member

  4. domino

    domino New Member

    It's not uncommon to see a lot of entries in your logs. i have BFD installed and my logs show many. Just make sure you use a really hard password numbers, and chars.

    If you really want to make it a little harder, change the root shell port to anything other than 22 and create 2 logins. a dummy login and then the root login. It wont make your server impenitrable, but it can make it a little harder for intruders.
  5. edge

    edge Active Member Moderator

    Or just create a firewall rule with IPTABLES for the IP (yours) that is okay to access the server with SSH
  6. domino

    domino New Member

    well that would be a problem with jailed users that request shell. And I would imagine it would be anoying if you and your clients have a dynamic IP.
  7. edge

    edge Active Member Moderator

    That is true!

    An other nice way is by using Port Knocking
    Again.. Not a nice way for your users...

Share This Page