Scan ssh log file for failed login attempts in a given period. Add iptables rules to ban offenders.
- I -like many others- have used fail2ban, but wondered if there was some program that would just ban IP addresses targeting ssh on my systems, without all the bells and whistles. Couldn't find any actively maintained, so I decided to write my own. Actually, the only thing I'm missing is the sense of well-being resulting from reporting offenders to blocklist.de. I may decide to implement some sort of snitching in a future release.
Be the first to post a review of ssh watch!