I am getting emails from my server that someone is trying to brute force into my server...but APF and BFD are holding and they seem to blocking the IP's.
Is there anything i can do about these brute force attacks ?
What can i do ?The remote system 22.214.171.124 was found to have exceeded acceptable login failures on host.secrethost.com. As such the attacking host has been banned from further accessing this system; for the integrity of your host you should investigate this event as soon as possible.
The following are event logs for exceeded login failures from 126.96.36.199 on service sshd (all time stamps are GMT -0500):
- Executed actions:
/etc/apf/apf -d 188.8.131.52