diff options
author | Ryan Yoosefi <ryan.yoosefi@gmail.com> | 2015-09-25 02:23:08 -0700 |
---|---|---|
committer | Ryan Yoosefi <ryan.yoosefi@gmail.com> | 2015-09-25 02:23:08 -0700 |
commit | c1b80a5e1bb9d426e87d4eec3285cf20c405438b (patch) | |
tree | 192c31cb170822616f57d3b62308ca752c89ebf5 /README.md | |
parent | 4744e165394c696144499d95d79ab5b55b556cbd (diff) | |
download | fail2ban-c1b80a5e1bb9d426e87d4eec3285cf20c405438b.tar.gz |
README :: fitted paragraph style
Diffstat (limited to 'README.md')
-rw-r--r-- | README.md | 19 |
1 files changed, 9 insertions, 10 deletions
@@ -6,16 +6,15 @@ ## Fail2Ban: ban hosts that cause multiple authentication errors -Fail2Ban scans log files like `/var/log/auth.log` and bans IP addresses -having too many failed login attempts. -It does this by updating system firewall rules to reject new connections -from those IP addresses, for a configurable amount of time. -Fail2Ban comes out-of-the-box ready to read many standard log files, such as those -for sshd and Apache, and is easy to configure to read any log file you choose, for -any error you choose. - -Though Fail2Ban is able to reduce the rate of incorrect authentications attempts, -it cannot eliminate the risk that weak authentication presents. +Fail2Ban scans log files like `/var/log/auth.log` and bans IP addresses having +too many failed login attempts. It does this by updating system firewall rules +to reject new connections from those IP addresses, for a configurable amount +of time. Fail2Ban comes out-of-the-box ready to read many standard log files, +such as those for sshd and Apache, and is easy to configure to read any log +file you choose, for any error you choose. + +Though Fail2Ban is able to reduce the rate of incorrect authentications +attempts, it cannot eliminate the risk that weak authentication presents. Configure services to use only two factor or public/private authentication mechanisms if you really want to protect services. |