Tony first time watcher thanks for the info. I've been struggling a lot with this but it turns out on 24.04 there is an issue related to python as of now may 2024. Switched to 2202 and it worked fine and I completed your example.
There are extra filters for Apache, which is part of the WordPress stack. You can research those to get what you're looking for, as Apache seems to have more filters than any of the other server types or frameworks. I used the Nginx filter to help on the front end of my site. Works great. Since I followed Tony's SSH hardening tutorial I don't even need fail2ban for SSH anymore. It is just there in case I let passwords be used again.
My only question is can this be used with the local login screen on desktop systems like XAuthority or XFCE desktop, e.g. on the local meshine and not through ssh
Can you please make one tutorial on how to install Mod Security and/or any other security features in Hestia and CloudPanel? My WordPress sites are getting malware-affected & file permissions are being changed every alternative day. Btw your channel is very helpful. I found so much info in your videos. Thanks a lot for everything.
Hi I have 10 websites on Ubuntu LAMP + VestaCP If one of my websites was infected than how can I protect other websites from my infected website ? How to be sure that virus code will stay only in one directory website and will not infect other websites located in the same home directory. Thank you
There is no way to ensure that the virus will not crawl to another directory on your server. I don't have an exact answer for you. I would suggest to talk to an expert in this case
Not a tutorial on fail2ban. Simply a tutorial on how to use apt to install a package. A demonstration of the default settings is not a tutorial. Useless to anyone actually wanting to use the software. Please delete.
to make your ssh server really secure. ssh key max bits, long password for it. tor onion service. ban direct root login and have to use username. change port use fail2ban and use 2fa your unhackable and update your server automatically.
Hi Tony, can you please provide tutorial how to set fail2ban+cloudflare? So when people hit many urls on our website and got some 404, they will banned automatically (by ip) from cloudflare ip access rules (with API). I got the tutorial on here youtube(dot)com/watch?v=Ha8NIAOsNvo, but i can't understand it well because he's using nginx proxy manager. I think it will be very great tutorial if you explain more details with no panel. Thanks
Tony first time watcher thanks for the info. I've been struggling a lot with this but it turns out on 24.04 there is an issue related to python as of now may 2024. Switched to 2202 and it worked fine and I completed your example.
Very good video. At minute 6:00 when you try with bad passwords, it does not take the maxretry=2 because the service needs to be restarted.
Good call!
Great tutorial! :) How to monitor and ban failed WordPress logins? A follow up tutorial maybe? :)
Thanks! Great suggestion
There are extra filters for Apache, which is part of the WordPress stack. You can research those to get what you're looking for, as Apache seems to have more filters than any of the other server types or frameworks. I used the Nginx filter to help on the front end of my site. Works great. Since I followed Tony's SSH hardening tutorial I don't even need fail2ban for SSH anymore. It is just there in case I let passwords be used again.
Wordfence works for that
Great video, I would like to know how to use fail2ban to monitor docker containers that are exposed to the internet, like Nextcloud,Wordpress, etc
Thanks!
Great idea!
Great video. Any chance of an in depth on this? With nginx and cloudflare?
Very informative video.
My only question is can this be used with the local login screen on desktop systems like XAuthority or XFCE desktop, e.g. on the local meshine and not through ssh
If I have disabled passworfd logins and I am using ssh key do I still need fail2ban and if yes how do I test it ?
Can you please make one tutorial on how to install Mod Security and/or any other security features in Hestia and CloudPanel? My WordPress sites are getting malware-affected & file permissions are being changed every alternative day. Btw your channel is very helpful. I found so much info in your videos. Thanks a lot for everything.
This was very helpful bro! ty
Glad it helped!
Hi Tony.. Thanks for this video. My question is how to ban IP permanently? Is there a way to add IPs to blacklist?
i know it
You can set bantime to -1 for a permanent ban
very useful, can you do one about the apache jails too? and maybe the abuseipdb link
Thanks for the suggestions!
thank you, very good
Great video.
Thanks!
Really nice, Great.
Thank you! Cheers!
Could it lock the whole system irrespective of which ip failed. Like even if one ip fails, it blocks all ips.
seems like you did not restart the service after the changed of the conf file.
Thanks for pointing that out
Hi
I have 10 websites on Ubuntu LAMP + VestaCP
If one of my websites was infected than how can I protect other websites from my infected website ?
How to be sure that virus code will stay only in one directory website and will not infect other websites located in the same home directory.
Thank you
There is no way to ensure that the virus will not crawl to another directory on your server. I don't have an exact answer for you. I would suggest to talk to an expert in this case
@@TonyTeachesTech thank you
nice demo
Thanks!
I have found your Login Code and cheat code which failed to manipulate. Whatever FAIR CODE YOU HAVE WRITTEN.
How to get that other terminal in 4.36
Anyone knows hiow to create ssh sessions with diferent IP addresses ?
What do you mean?
Hi to all
Hola!
hello
Hi there :)
Not a tutorial on fail2ban. Simply a tutorial on how to use apt to install a package. A demonstration of the default settings is not a tutorial. Useless to anyone actually wanting to use the software. Please delete.
to make your ssh server really secure.
ssh key max bits, long password for it. tor onion service. ban direct root login and have to use username.
change port use fail2ban and use 2fa your unhackable and update your server automatically.
Hi Tony, can you please provide tutorial how to set fail2ban+cloudflare? So when people hit many urls on our website and got some 404, they will banned automatically (by ip) from cloudflare ip access rules (with API). I got the tutorial on here youtube(dot)com/watch?v=Ha8NIAOsNvo, but i can't understand it well because he's using nginx proxy manager. I think it will be very great tutorial if you explain more details with no panel. Thanks