The big cybersecurity news this week is the Apache Log4j zero-day vulnerability nicknamed Log4Shell, which allows an attacker to seize full control of a server by sending a rather innocuous message to a web (or indeed many other types of) server. Surprisingly, it even made the headline news on Radio New Zealand. But what can…
Continue reading →It must be that time of year again. There seems to be heightened activity of script-driven attacks on servers. Most of these attacks are attempted brute-force password cracks of WordPress accounts. Here’s a list of countries (by ISO country code) that attacks have come on one of my servers from in the last 48 hours….
Continue reading →I’ve been running fail2ban on my Linux servers for years. It’s a neat little piece of software that detects people trying to break into your system, and then ignores any further packets from the intruder’s IP address for a period of time. It comes as a standard package for many distributions, and is easy to…
Continue reading →