On Thu, Dec 22, 2016 at 03:13:33PM +0000, Aero Maxx D wrote: > I read somewhere that someone could just hammer the authentication > with multiple tries until they get access!
Without further protection, yep. Several things in Fedora you could use: - mod_evasive -- an apache module to protect against brute-force attacks - fail2ban -- not just for ssh; have it follow the logs and block at the firewall level - pam_shield -- count login attempts and ban based on that -- Matthew Miller <[email protected]> Fedora Project Leader _______________________________________________ users mailing list -- [email protected] To unsubscribe send an email to [email protected]
