Hello All,
Lately I have noticed a rise in attempted attacks on SSHD and ProFTPD logins. This only recently started, but it looks as if it may be a continued attacked. Luckily nothing seems like it has been breached, but I would like to block IP's of the attackers and prevent them in the future.
I am looking for suggestions on what you guys use to help with these brute force attempted logins.
After some research, it looks like AFD and BFD might be a solution, but is there anything that you have found in your experience more effective? I would like to somehow automate the process of blocking those IP's that are malicious.
I am running CentOS 5 64 bit. Any suggestions are highly appreciated.
Lately I have noticed a rise in attempted attacks on SSHD and ProFTPD logins. This only recently started, but it looks as if it may be a continued attacked. Luckily nothing seems like it has been breached, but I would like to block IP's of the attackers and prevent them in the future.
I am looking for suggestions on what you guys use to help with these brute force attempted logins.
After some research, it looks like AFD and BFD might be a solution, but is there anything that you have found in your experience more effective? I would like to somehow automate the process of blocking those IP's that are malicious.
I am running CentOS 5 64 bit. Any suggestions are highly appreciated.