Blocking Brute Force Attacks - cleartext and weak ciphers

P

procopius560

Registered
Dec 9, 2015
2
0
1
Texas
cPanel Access Level
Root Administrator
I'm curious how others handle the flurry of messages in the secure log concerning remote IPs that band on SSH using either cleartext or weak ciphers. Just this morning, I had a remote IP try to connect about 1,500 times in a little over an hour. Roughly 20% of my log file lines have to do with this issue. I would like to be able to ban IPs after they reach a threshold. I'm thinking of installing fail2ban to deal with this issue, but I am curious to hear what everyone has to say.

Thanks,
 
You must log in or register to reply here.
Thread starter Similar threads Forum Replies Date
bejbi ModSecurity OWASP blocking GTMetrix Security 1
A SOLVED csf not blocking IPs Security 2
R cPHulk Brute Force Protection Blocking My Email When I Am Trying From Non Whitelisted IP Address Security 9
W Blocking specific emails from Brute Force smtp attempts Security 10
D Brute force blocking user root Security 1
Similar threads
ModSecurity OWASP blocking GTMetrix
SOLVED csf not blocking IPs
cPHulk Brute Force Protection Blocking My Email When I Am Trying From Non Whitelisted IP Address
Blocking specific emails from Brute Force smtp attempts
Brute force blocking user root
Top Bottom