Ronin KenshoJun 10, 2025
Found some cool inspiration for new tools in the feed of @neuroexception, soon gonna add #ansible, #authelia, #failtoban and #immich to my setup!
Show threadThomasCraigJul 15, 2024

@dee This presents a #security risk to any organisation that depends on #failtoban but is not supporting it.

Has anybody successfully championed for their org to make recurring donations to the open source software projects they rely on? How did you do it? Any challenges you confronted?

Show threadKevin Karhan Dec 29, 2023

@nixCraft Eeyupp...

That's why one has to use #FailToBan very aggressively as well as blocklists AND ideally pubkey-based auth.

I mean, I do pull a lot of blocklists on top of that because there is no legitimate reason not to use #Spamhaus #DROP blocklists...

https://github.com/greyhat-academy/lists.d/blob/main/blocklists.list.tsv

lists.d/blocklists.list.tsv at main · greyhat-academy/lists.d

List of useful things. Contribute to greyhat-academy/lists.d development by creating an account on GitHub.

GitHub
Adam Trickett  Feb 14, 2023

Make sure you disable password logins and ideally only allow named users with SSH.

Just stood up some new VMs and the logs are already flooded with random SSH logins...!

#ssh #cert #security #failtoban #firewall #Linux