Tag - security

Entries feed - Comments feed

Saturday, May 26 2012

Installing ipset on CentOS 6

I assume this will work on RedHat 6 too:

# yum install http://people.redhat.com/twoerner/BZ/477115/ipset-6.7-2.el6.x86_64.rpm http://people.redhat.com/twoerner/BZ/477115/libmnl-1.0.1-1.el6.x86_64.rpm http://people.redhat.com/twoerner/BZ/477115/libmnl-devel-1.0.1-1.el6.x86_64.rpm

Yes, you can copy and paste.

Note that this isn't adding any repositories, so I'm not sure what impact this will have in future since the packages won't get automatically updated by `yum update` (security updates, breakage when kernel updates etc?)

Tuesday, October 19 2010

Custom Actions with fail2ban

Most people are familiar with the fail2ban package available for protecting against brute-force password attacks against your servers.

Fail2ban scans log files like /var/log/pwdfail or /var/log/apache/error_log and bans IP that makes too many password failures. It updates firewall rules to reject the IP address.

What you might not have experimented with is it's ability to execute custom actions instead (or as well as) blocking the source IP in iptables.

Continue reading...