Open drybjed opened 9 years ago
In terms of tinyhoneypot
mentioned above, there is a tutorial Increase your IPv4 security with Fail2Ban and Tinyhoneypot on Debian Jessie - source: howtoforge.com - date: ? - what rises for me the question, if tinyhoneypot
should become a separate issue in https://github.com/debops/ansible-fail2ban?
Add BPF - Berkeley Packet Filter - Module to iptables based Linux firewall in order to be in the position to better defend against DNS-DDoS attacks, more and more to come as IoT security threads in todays web environment.
More Links about BPF:
Motivation for this input by article IETF 97: Technische DDOS-Gegenmittel statt politischer Eingriffe - German language only
tinyhoneypot
and redirect traffic there instead of blocking it in certain cases to learn what we can about possible attacks?