[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: RFC: changes to default password strength checks in pam_unix

On Tue, Sep 04, 2007 at 12:31:15PM +0300, Lars Wirzenius wrote:
I'm sure it does work great. Can you work on making sure [fail2ban] is the
default in lenny if openssh-server is installed?

Keep in mind that, by design, fail2ban opens up a denial-of-service vulnerability, especially with the proliferation of NAT routers.

It's not something that should be used without people being aware of what it does.

Dwayne C. Litzenberger <dlitz@dlitz.net>

Reply to: