Fail2ban on marktaguiad.dev https://marktaguiad.dev/tags/fail2ban/ Recent content in Fail2ban on marktaguiad.dev Hugo en-us marktaguiad@marktaguiad.dev (Mark Taguiad) marktaguiad@marktaguiad.dev (Mark Taguiad) marktaguiad.dev Sat, 26 Jul 2025 00:00:00 +0000 Linux Security & Hardening https://marktaguiad.dev/post/linux-security-hardening/ Sat, 26 Jul 2025 00:00:00 +0000marktaguiad@marktaguiad.dev (Mark Taguiad) https://marktaguiad.dev/post/linux-security-hardening/ <div class="alert alert-info"> <div class="alert-title">Info</div> <div class="alert-content"> Content here are automated using ansible, check <a href="https://marktaguiad.dev/post/linux-hardening-playbook">here</a> if you are interested. </div> </div> <h1 id="table-of-contents">Table of Contents</h1> <nav id="TableOfContents"> <ol> <li><a href="#ssh-hardening">SSH hardening</a> <ol> <li><a href="#core-configuration">Core Configuration</a></li> <li><a href="#enforce-password-complexity">Enforce password complexity</a></li> <li><a href="#debian-base">Debian base</a></li> <li><a href="#redhat-base">Redhat base</a></li> <li><a href="#monitoring">Monitoring</a></li> <li><a href="#optional-enhancement">Optional Enhancement</a></li> </ol> </li> <li><a href="#fail2ban">Fail2ban</a> <ol> <li><a href="#installation">Installation</a></li> <li><a href="#configuration">Configuration</a></li> <li><a href="#status">Status</a></li> <li><a href="#unbanning-ip">Unbanning IP</a></li> <li><a href="#custom-configregex">Custom Config/Regex</a></li> </ol> </li> <li><a href="#selinux">SELinux</a> <ol> <li><a href="#mode-definitions">Mode Definitions</a></li> <li><a href="#labels-and-policy">Labels and Policy</a></li> <li><a href="#type-enforcement">Type Enforcement</a></li> <li><a href="#mcs-enforement">MCS Enforement</a></li> <li><a href="#mls-enforcement">MLS Enforcement</a></li> <li><a href="#selinux-enforcement-comparison">SELinux Enforcement Comparison</a></li> <li><a href="#configuration-1">Configuration</a></li> </ol> </li> </ol> <ol> <li><a href="#firewall">Firewall</a></li> <li><a href="#automatic-security-upgrade">Automatic Security Upgrade</a> <ol> <li><a href="#debian-base-1">Debian base</a></li> <li><a href="#redhat-base-1">Redhat base</a></li> </ol> </li> <li><a href="#audit">Audit</a></li> <li><a href="#advanced-intrusion-detection-environment">Advanced Intrusion Detection Environment</a></li> </ol> </nav> <h3 id="ssh-hardening">SSH hardening</h3> <p>SSH is one of the most targeted services on any server exposed to a network. Hardening SSH reduces the attack surface, limits brute-force attempts, and enforces stronger authentication and cryptography.</p>