From Beanzilla@21:1/182 to Beanzilla on Thu Apr 8 13:50:00 2021
Beanzilla wrote to tonic <=-
On 04/07/2021 8:36 pm tonic said...
To> I've never super investigated how enigma handles ssh calls but I'm
To> curious if anyone is using a tool like SSHGuard or Fail2Ban to prevent
To> bot spam on these ports.
I know I wrote a tiny Python script that essentially tails the Enigma logs, when someone attempts to login with invalid/not allowed usernames (root and such) that I essentially act like Fail2Ban. (I used the IP
table and stored for myself their IP and the current time, so I could remove them from the IP table after so many hours)
If you want to take a look at my Python script I just put it on GitHub