If fail2ban sounds like it might be worthwhile for your environment, you are doing something gravely wrong.
-
-
I get that it increases attack surface, though I'd feel a python-written parser is relatively safe. but performance win remains.
-
It's not the mem safety, it's that logs are untrusted freeform text. The classic bugs in these are like ssh "foo from 127.0.0.1"
@host.com. - 9 more replies
New conversation -
-
-
Now you still have the original problem, and a whole bunch of new attack surface.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Not just PW scans, any sort of automated vuln scan. For low-volume (personal scale) services that seems great
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Much better options: - use keys - listen on a non-standard port - add 2FA (Google Authenticator, etc.) for things like bastion hosts
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.