Added more bantime and lowered max retry attempts

Ban time was too low for preventing ssh brute force attacks, this change also allows to keep the auth.log more clean and avoid wasting cpu and i/o on this. Bots eventually will flag your IP as secure and move along.

Added more bantime and lowered max retry attempts
Ban time was too low for preventing ssh brute force attacks, this change also allows to keep the auth.log more clean and avoid wasting cpu and i/o on this. Bots eventually will flag your IP as secure and move along.
dd0bdef6 · kri3v · e57e0808 · dd0bdef6
Commit dd0bdef6 authored Jul 02, 2015 by kri3v
Show whitespace changes
Inline Side-by-side

Showing with 6 additions and 0 deletions

jail.local conf/fail2ban/jail.local +6 -0

No files found.
--- a/conf/fail2ban/jail.local
+++ b/conf/fail2ban/jail.local
@@ -8,6 +8,12 @@ maxretry = 20
 # JAILS
+[ssh]
+enabled  = true
+maxretry = 7
+findtime = 120
+bantime = 3600
 [ssh-ddos]
 enabled  = true