[Tfug] vsftpd security
Eric Gearhart
eric at nixwizard.net
Wed Feb 14 15:21:24 MST 2007
Another one to take a look at that doesn't have any prerequisites other
than a working IPtables is fail2ban
http://fail2ban.sourceforge.net/
I use it on my server at http://nixwizard.net and it seems to work fine
You can configure it out of the box to watch ssh logs, vsftpd, apache
logs. It has configs for those three by default (well on Debian and
Gentoo it did)
For custom stuff it's very flexible too. For example if you wrote your
own script and had it dump "error - ip" to a log file fail2ban could
easily watch that and if someone's trying to dictionary it it would
block them for X amount of time.
Lemme know if that works for ya,
Eric
More information about the tfug
mailing list