>cat /var/log/fail2ban.log 30 minutes after installation.

>>58673699

China has ~18% of population but represent 85% of your traffic.

That means Chinese citizens are nearly 5x more tech savvy than the average global citizen!

Amazing.

>>58673699
just use keys, but also iptables to block gooks, poo in loos and other undesirables.

Kill yourself, shit for brains.

Set up a honey pot

>>58673758
or just disable root ssh login. What is the chance they will guess both username and password even with tousands of guesses per hour :^)

File: 1395848262178.jpg (64KB, 1920x1080px) Image search: [Google]

64KB, 1920x1080px

Don't save thumbnails.

>>58673790
Not them but I do both. Keys only, no root login.

>>58673790
SSH root login is disabled. My user account uses an SSH key.

>>58673761
Thanks.

>>58673758
If I cared enough I could implement geoip based carpet bans.

>>58673699

When I set up some software like that I got hit by an anon bot.

It tried to access a url like,

"www.something.com/anon_was_here_fag"

And then it left like the beautiful butterfly that it was.

Don't u have NAT?

>>58673699
well, at least it is some legit botnet mentioned on /g/

>>58673790
>What is the chance they will guess both username and password
Your username is not meant to be secret, just use a strong password, or better yet, use public key auth (and encrypt your priv key with a strong password). But yep, enabling root login is idiotic.

>>58673699
Install a honey pot and get some voyeuristic pleasure from reading their logs as they slowly work out that they're not in a true shell.

apt-get install kippo

>>58673699
>not using iptables to block everyone except your ip's (and cloudflare ips if you're running a website)

>>58674497
Honeypots are fairly easy to identify, you'd only get botnets and script kiddies. If it's a good blackhat the only reason he's in your honeypot is if he will try to break out of it and get in your network as a challenge and try to exploit it. Or your honeypot will get used in some botnet for ddosing if you leave some networking open.

>chinese block access to news sites which talk shit about china
>they do literally nothing to stop chinese """""""""""hackers""""""""""""", gold farmers and other menances

this is why you never entrust technology with braindead politicians.

>>58673699
One of the first things I do after setting up a server is blocking most of china's IP ranges in iptables, at least for SSH and such.

>>58673724
Or that chines are fucking subhuman skiddies.

>>58674508
>ip changes one day
>you're fucked

>using ssh on the default port

>>58674751
Why would they protect foreigners from Chinese hackers? Censorship is for local benefit.

>>58675778
have a cheap vps that costs $10 a year, you can ssh through that when your ip changes.

>>58676401
But then how do you protect the cheap VPS agains chinese IPs?

>>58676157
>not using ssh on the default port
>security through obscurity
>chinks still knocking to the new port 24/7

>>58677018
you'd be surprised how many chinks it stops
i get one request a week at best

Dumb question, but if you only allow login with an SSH key, you would have absolutely 0 risk of getting hacked, is that right? (except if your private key gets stolen of course)

>>58676939
same as your main server, except this one has a web console you can log in to to set your new ip

>>58677095
But then the chinks could hack into your web console and set their own IP. It's a lose-lose game.

>>58673790
Move ssh a few ports.
Everything automated won't even try.

>>58677120
>the chinks could hack into your web console
you get an email every time someone logs in

>>58673699
>hosting your SSH server on port 22
It's like you enjoy wasting resources with all these login attempts.

>>58677183
By the time you get the mail it's already too late; they've already gained access. Plus nothing prevents them from hacking your e-mail.

>>58678292
stfu faggot. nobody is hacking vps account they don't even know the username to, or random email addresses.

the bottom line is nobody can even connect to my servers aside from me.

>>58678416
>nobody is hacking vps account they don't even know the username to, or random email addresses.

I think you're being the faggot here. You're creating layer upon layer of useless crap, while your only defense is "nobody can hack you if they don't know your username or password". Well guess what, this applies to your main server too...

File: 1470447640609.jpg (156KB, 1136x852px) Image search: [Google]

156KB, 1136x852px

>>58673699
>2017
>not using port knocking to open a non-standard ssh port in your firewall to only the ip address that the knocks came from
ishygddt