Fail2ban, how I love thee!
Fail2ban is one of those tools that once I learned how valuable it is, I wondered how I ever lived so long without it. In the past, I used a utility known as DenyHosts to secure OpenSSH.
DenyHosts protected SSH (no more, no less). It watched the server's log files, looking for authentication attempts. If it saw too many failures from a single IP address, it would create a firewall rule to block that IP. The problem was that it only protected OpenSSH. Another problem is that
DenyHosts just kind of went away quietly. For some reason, it stopped being maintained and some distributions removed it outright.
Fail2ban does what
DenyHosts used to do (protect SSH) and more, as it also is able ...