Using tools like fail2ban [message #28974] |
Wed, 02 April 2008 17:14 |
joelee
Messages: 63 Registered: April 2006
|
Member |
|
|
Hi All,
I am using a tool like fail2ban which automatically monitors logs and blocks IP addresses doing brute force attacks. Currently, I install this tool on a per-vps basis.
Fail2ban info can be found here: http://fail2ban.org/wiki/index.php/Main_Page
I wanted to see about using this on the OpenVZ Host Node so that I do not have to install and config on each vps. I wanted to see how others are using tools like this and what approach is being used.
From what I gather, installing this on HN will one keep the config files away from the users of VPS and only openvz HN admin would be able to view and monitor logs. Plus, nothing prevents the user of the vps to install a separate install in there vps as well.
I know it's not advised to install these types of apps on the HN but this is the most efficient. Would appreciate any comments/suggestions.
Joe
[Updated on: Wed, 02 April 2008 17:16] Report message to a moderator
|
|
|