You have that exactly backwards: if someone is hitting you with a password brute... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

gnfargbl on Oct 6, 2023 | parent | context | favorite | on: Fail2Ban

You have that exactly backwards: if someone is hitting you with a password bruteforce from a single IP address (which is the only threat that fail2ban mitigates) then it is assuredly nothing personal at all.

A personal insult, if you are ever unfortunate enough to receive one, will be much more stealthy and neither fail2ban nor any other magical rock will protect you against it.

CapitalistCartr on Oct 7, 2023 | [–]

You don't see any tigers around, do you?

gog on Oct 7, 2023 | [–]

Usually they use a big pool of IP addresses, but that doesn't make fail2ban completely useless since they do reuse IPs.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact