On Thu, Dec 22, 2016 at 03:13:33PM +0000, Aero Maxx D wrote: > I read somewhere that someone could just hammer the authentication > with multiple tries until they get access!
Without further protection, yep. Several things in Fedora you could use: - mod_evasive -- an apache module to protect against brute-force attacks - fail2ban -- not just for ssh; have it follow the logs and block at the firewall level - pam_shield -- count login attempts and ban based on that -- Matthew Miller <mat...@fedoraproject.org> Fedora Project Leader _______________________________________________ users mailing list -- users@lists.fedoraproject.org To unsubscribe send an email to users-le...@lists.fedoraproject.org
