Hardening your PI: SSHD protection
Steps to take to protect an internet-facing Raspberry PI (or other Debian) from brute-force SSH logins from subnets Note: Fail2ban 0.10.2 on 2020/12/22 Install firewall ufw and log analyzer fail2ban:
1 2 |
sudo apt update sudo apt install ufw fail2ban |
(PiOS Buster: the sshd jail is enabled by default via /etc/fail2ban/jail.d/defaults-debian.conf) Copy /etc/fail2ban/jail.conf to /etc/fail2ban/jail.local. This is the config… Read more »