Handling malicious requests with fail2ban (sergiocipriano.com)
from cm0002@lemmy.world to cybersecurity@infosec.pub on 30 Jul 16:10
https://lemmy.world/post/33707858

#cybersecurity

threaded - newest

Ajen@sh.itjust.works on 30 Jul 16:35 next collapse

The thing about fail2ban is that it’s only affective against automated scans and script kiddies, and if you keep things updated and configured correctly then they aren’t a threat. Any adversary that can break encryption or exploit a zero day can also get around fail2ban.

bacon_pdp@lemmy.world on 30 Jul 17:46 collapse

Port knocking or gtfo

adminofoz@lemmy.cafe on 31 Jul 23:01 collapse

Fr tho why does no one do port knocking? I know its not a comprehensive solution but it’s a pretty cool component imo.

bacon_pdp@lemmy.world on 31 Jul 23:08 collapse

If you set it up wrong or the service fails to start; you’ll need to use a console to recover.

Most people don’t even know about serial console servers

jpaul.me/…/how-to-build-a-raspberry-pi-serial-con…