>Tanweer Noor wrote: >> use /etc/hosts.allow option for ssh and for Apache check your httpd.conf >> file for options. >> >fail2ban. > mark Denyhosts is what I've used for a few years. Works great & fills up the /etc/hosts.deny file. Although like stated above using a block-first policy with added allows in the hosts.allow file you wouldn't need another app. Changing the SSHD port to something else like 222 actually drops breakin attempts down to nothing obviously because they're scanning for 22 and don't even pick you up most of the time. -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
