Debian 10225 Published by

Debian Tutorials posted 2 new tutorials for Debian GNU/Linux:

- Replacing OpenSSH server with dropbear
- Prevent brute force attacks using fail2ban



Replacing OpenSSH server with dropbear
dropbear is a SSH 2 server and client designed to be small enough to be used in small memory environments, while still being functional and secure enough for general use.
It implements most required features of the SSH 2 protocol, and other features such as X11 and authentication agent forwarding.
1. Install dropbear
apt-get install dropbear

2. Stop OpenSSH [...]
Replacing OpenSSH server with dropbear

Prevent brute force attacks using fail2ban
fail2ban monitors log files such as /var/log/auth.log and /var/log/apache/access.log and temporarily or persistently bans failure-prone addresses by updating existing firewall rules. Currently, by default, fail2ban supports ssh/apache/vsftpd but configuration can be easily extended for monitoring any other ASCII file.
1. Install fail2ban
apt-get install fail2ban

2. Test by connecting via ssh and making three incorrect password attempts. By [...]
Prevent brute force attacks using fail2ban