Tag: SECURITY

fail2ban: Set It and Forget It

Every server I deploy gets brute-force attempted within hours. SSH, HTTP auth, FTP, doesn't matter. The internet is full of bots scanning entire IP ranges 24/7 and they will find you. fail2ban is the lazy dev's answer to this. It reads your logs, spots repeated

iptables Firewall in 5 Rules

I keep seeing people overcomplicate their firewall setup with fancy wrappers and GUI tools. iptables is not that hard, and understanding it directly saves you when those wrappers break ( because they always do at the worst time ). Here's how I set up iptables on every new server. The