First sysadmin post… 🙂 Not the most important thing but I can’t think of anything else to write right now. One of the things I’d like to install on machines with ssh access is fail2ban (from Ubuntu repositories). It’s a script that monitors log files for failed login attempts and bans the corresponding IP-address for a certain amount of time. Any objections? It’s not the answer to everything of course but it keeps the typical ssh-scanners away. It can be used to monitor other log files (e.g. apache) too.

Read More