github
/
fail2ban
mirror of https://github.com/fail2ban/fail2ban
1
0
Fork 0
Code Issues Releases Wiki Activity

README :: fitted paragraph style

pull/1201/head
Ryan Yoosefi 2015-09-25 02:23:08 -07:00
parent 4744e16539
commit c1b80a5e1b
1 changed files with 8 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

17
README.md
View File

@ -6,16 +6,15 @@
## Fail2Ban: ban hosts that cause multiple authentication errors ## Fail2Ban: ban hosts that cause multiple authentication errors
Fail2Ban scans log files like `/var/log/auth.log` and bans IP addresses Fail2Ban scans log files like `/var/log/auth.log` and bans IP addresses having
having too many failed login attempts. too many failed login attempts. It does this by updating system firewall rules
It does this by updating system firewall rules to reject new connections to reject new connections from those IP addresses, for a configurable amount
from those IP addresses, for a configurable amount of time. of time. Fail2Ban comes out-of-the-box ready to read many standard log files,
Fail2Ban comes out-of-the-box ready to read many standard log files, such as those such as those for sshd and Apache, and is easy to configure to read any log
for sshd and Apache, and is easy to configure to read any log file you choose, for file you choose, for any error you choose.
any error you choose.
Though Fail2Ban is able to reduce the rate of incorrect authentications attempts, Though Fail2Ban is able to reduce the rate of incorrect authentications
it cannot eliminate the risk that weak authentication presents. attempts, it cannot eliminate the risk that weak authentication presents.
Configure services to use only two factor or public/private authentication Configure services to use only two factor or public/private authentication
mechanisms if you really want to protect services. mechanisms if you really want to protect services.