So i happened to look at journalctl on my VPS today and noticed a boob trying to ssh in as root...good thing firstly i don't permit password for root login's. His IP is also now being blocked...but he's still trying. Over 600 times in the last hour

@selea sounds like what I was looking for. I came up with a manual solution to have it email me then I can ban. I'll check out fail2ban now. Thanks.


fail2ban is quite handy :)
You can configure it to automatically ban IP's, and report them to their ISP while report it to abuseipdb for example :)

@shadowtreecar probably a good idea. I mean it's something I knew went on in the wild( people trying to get into places they don't belong) but I never imagine it was common enough to hit a random VPS...

Sign in to participate in the conversation

A instance dedicated - but not limited - to people with an interest in the GNU+Linux ecosystem and/or general tech. Sysadmins to enthusiasts, creators to movielovers - Welcome!