Willem Jan Withagen <wjw_at_digiware.nl> writes: > Digging in my logfiles .... , and its things like: > sshd[84942]: Disconnecting: Too many authentication failures [preauth] > > So errors/warnings without IP-nr. > > And I think I fixed it on one server to also write: > error: maximum authentication attempts exceeded for root from > 173.254.203.88 port 1042 ssh2 [preauth] fail2ban should catch both of these since sshd will print a message for each failed authentication attempt before it prints a message about reaching the limit. > Are they still willing to accept changes to the old version that is > currently in base? No, why would they do that? DES -- Dag-Erling Smørgrav - des_at_des.noReceived on Tue Nov 10 2015 - 10:11:17 UTC
This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:41:00 UTC