Dynamic IP Blacklisting with NGINX Plus and fail2ban
Dynamic IP Blacklisting with NGINX Plus and fail2ban You may not realize it, but your website is under constant threat. If it’s running WordPress, there will be bots trying to spam you. If it has a login page, there will be password brute-force attacks. You may also consider search engine spiders as unwanted visitors. Defending your site from unwanted, suspicious, and malicious activity is no easy task. Web Application Firewalls, such as ModSecurity and Wallarm, are an effective tool and should be considered as part of your security stack. For most environments, there’s no such thing as too much security, and a multi-layered approach is invariably the most effective. In this blog post, we’ll discuss the use of fail2ban as another layer of the web security stack. Fail2ban is an intrusion detection system (IDS) which continually monitors log files for [ more… ]