[Mageia-dev] Fail2Ban vs Blockhosts vs DenyHosts vs iptable throttle for SSH
finid at linuxbsdos.com
finid at linuxbsdos.com
Tue Feb 19 12:20:08 CET 2013
If that's how you feel about having a program like DenyHosts running by
default, do you feel the same way about having a firewall running and
configured out of the box.
Is a firewall a sysadmin's or packager's choice?
--
finid
On 2013-02-19 11:03, Guillaume Rousse wrote:
> Le 19/02/2013 11:06, finid at linuxbsdos.com a écrit :
>> Sounds like a good idea to have something in place out of the box.
>> PC-BSD, which has SSH server running by default also has DenyHosts
>> configured and running by default.
> That's a asysadmin choice, not a packager one. Bloating every
> machines just because it may be useful in some cases doesn't seems a
> good idea.
>
> And the best defense against ssh scan bot is to forbid password-based
> authentications, BTW.
More information about the Mageia-dev
mailing list