You have undoubtedly seen it, thousands of lines in your logfiles for repeated brute-force login attempts on ssh and other services. I recently ran across a handy how-to for using a utility/service named fail2ban which can (temporarily) auto-ban the hosts that repeated failures are coming from. Working like a charm for me. Several versions of the directions are available for different Linux distros.
Preventing Brute Force Attacks with Fail2Ban on Fedora 9 [HowtoForge]
Update:Â Here’s a version for CentOS [My-whiteboard]
E-mail Me
