Investigate whether or how to use fail2ban

jhu-idc / iDC-general

Contains non-code-base specific tickets relating to the Islandora8 for Digital Collection project

0 stars 0 forks source link

Investigate whether or how to use fail2ban #451

Open birkland opened 2 years ago

birkland commented 2 years ago

From security audit:

As mentioned above, utilize Fail2ban to monitor activity. This can be an invaluable resource and is difficult to express all the benefits of limiting resources to potentially malicious actors.

Full security audit recommendation is here https://docs.google.com/document/d/1gNMnJqZsq7WDDPLMtfW44bzxWEPHTBf8k-kh76zpH7c/edit#bookmark=id.b93db0rilcgk

htpvu commented 2 years ago

@bbranan I think There's a call to make here on whether this needs to be implemented prior to the hand-off to LAG