On Thu, Dec 22, 2016 at 03:13:33PM +0000, Aero Maxx D wrote: > I read somewhere that someone could just hammer the authentication > with multiple tries until they get access! Without further protection, yep. Several things in Fedora you could use: - mod_evasive -- an apache module to protect against brute-force attacks - fail2ban -- not just for ssh; have it follow the logs and block at the firewall level - pam_shield -- count login attempts and ban based on that -- Matthew Miller <mattdm@xxxxxxxxxxxxxxxxx> Fedora Project Leader _______________________________________________ users mailing list -- users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to users-leave@xxxxxxxxxxxxxxxxxxxxxxx
