Hi Mark fail2ban is what you want to look at - I've just set it up on a server with a webmail access into our Internal mail and it works a treat.
Nicely extensible as it monitors logs so can be turned to just about any type of undesirable traffic Martin On 30 June 2011 10:07, Mark Rogers <m...@quarella.co.uk> wrote: > Looking through my server logs I'm seeing a lot of auth failures suggesting > we're getting a lot of people trying to hack in. No great surprise, although > there are only a handful of addresses which was a bit surprising. > > I am sure there are several ways to automatically block addresses following > several failed attempts, any simple suggestions for something I might try? > The OS is ubuntu-server, and as it's a remotely hosted server it's quite > important that I don't screw something up that means I can't connect back in > myself! > > -- > Mark Rogers // More Solutions Ltd (Peterborough Office) // 0844 251 1450 > Registered in England (0456 0902) @ 13 Clarke Rd, Milton Keynes, MK1 1LG > > > ______________________________**_________________ > Peterboro mailing list > Peterboro@mailman.lug.org.uk > https://mailman.lug.org.uk/**mailman/listinfo/peterboro<https://mailman.lug.org.uk/mailman/listinfo/peterboro> >
_______________________________________________ Peterboro mailing list Peterboro@mailman.lug.org.uk https://mailman.lug.org.uk/mailman/listinfo/peterboro
