Fail2ban scans log files like /var/log/pwdfail or /var/log/apache/error_log and bans IP that makes too many password failures.

It updates firewall rules to reject and bans IP that makes too many password failures.

It updates firewall rules to reject the IP address.

Here is a list of the main features available in Fail2ban:

  • Client/Server architecture.

  • Multi-threaded.

  • Highly configurable.

  • FAM/Gamin support.

  • Parses log files and looks for given patterns.

  • Executes commands when a pattern has been detected for the same IP address for more than X times. X can be changed.

  • After a given amount of time, executes another command in order to unban the IP address.

  • Uses Netfilter/Iptables by default but can also use TCP Wrapper (/etc/hosts.deny) and many other actions.

  • Handles log files rotation.

  • Can handle more than one service (sshd, apache, vsftpd, etc).

  • Resolves DNS hostname to IP address.


Download from: Sourceforge




Author:
admin
Time:
Wednesday, April 30th, 2008 at 10:24 pm
Category:
Security Systems
Comments:
You can leave a response, or trackback from your own site.
RSS:
You can follow any responses to this entry through the RSS 2.0 feed.
Navigation:
« Freevo Download
Conversion to unicode or byte string Download »

Leave a Reply