[CentOS] sshd: Authentication Failures: 137 Time(s)

Mon Apr 4 15:11:31 UTC 2011
aly.khimji at gmail.com <aly.khimji at gmail.com>

Hey you should check out fail2ban as well. Excellent little app that analysis the log for the corresponding demon using a regex (u can create custom ones too) and performs an action you choose including iptables, hosts.deny, etc.. You can easily adjust setting like 3 failed connections max per min, etc..

Works well for sshd, postfix, httpd, etc..also fires you an email when a attack is stopped

Simple and very effective. Definitely worth checking out


Sent from my BlackBerry device on the Rogers Wireless Network

-----Original Message-----
From: Marian Marinov <mm at yuhu.biz>
Sender: centos-bounces at centos.org
Date: Mon, 4 Apr 2011 18:00:23 
To: CentOS mailing list<centos at centos.org>
Reply-To: CentOS mailing list <centos at centos.org>
Subject: Re: [CentOS] sshd: Authentication Failures: 137 Time(s)

CentOS mailing list
CentOS at centos.org