How to restrict access to a URL in Ngnix

Sometimes it needs to restrict some URLs of your application. Suppose, if you have a WordPress application then it doesn’t need to give access to the URL http://www.example.com/wp-admin to all. If you are restricting the URL then you are also preventing brute force attack to to URL. If the URL is available to all then […]
Continue reading…

 

How to install Apache’s mod_evasive to prevent DoS/ Brute-Force attacks on CentOS

mod_evasive is an evasive maneuvers module for Apache that provides evasive action in the event of an HTTP DoS attack or brute force attack. It is also designed to be a detection and network management tool, and can be easily configured to talk to ipchains, firewalls, routers, and more. mod_evasive presently reports abuse via email […]
Continue reading…

 

How to install and configure Fail2ban on Ubuntu 12.04 to Stop Brute Force Attacks

Fail2Ban is an intrusion prevention framework written in the Python programming language. It works by reading SSH, ProFTP, Apache logs etc.. and uses iptables profiles to block brute-force attempts. Install Fail2ban:

Configure Fail2ban: The original configuration file of fail2ban is /etc/fail2ban/jail.conf. We will create a local copy of configuration file.

Now we will […]
Continue reading…