Hi I have a lot of breakin attempts on my server (you can see few exemples bellow). Is it possible to set some kind of auto ban for IP's after invalid user or password is entered 10 times.
It's not uncommon to see a lot of entries in your logs. i have BFD installed and my logs show many. Just make sure you use a really hard password numbers, and chars. If you really want to make it a little harder, change the root shell port to anything other than 22 and create 2 logins. a dummy login and then the root login. It wont make your server impenitrable, but it can make it a little harder for intruders.
Or just create a firewall rule with IPTABLES for the IP (yours) that is okay to access the server with SSH
well that would be a problem with jailed users that request shell. And I would imagine it would be anoying if you and your clients have a dynamic IP.
