Use Fail2Ban to block WordPress login botnets

Posted on October 21, 2015 by richard

Fail2Ban is great at being able to parse logfiles and generate IP Filter Firewall rules (usually “DROP”) against patterns that are unwanted.

The common use of Fail2Ban is to firewall SSH login dictionary scans, but here’s how you add to just 2 files in your Fail2Ban config to block > 3 wp-login.php attempts from an IP Address.

Please note this is for GNU/Linux (Debian/Ubuntu etc) and please feel free to contact us for RHEL based equivalent commands/setup.

Add the following lines to /etc/fail2ban/jail.local

[wp-auth]
enabled = true
filter = wp-auth
action = iptables-multiport[name=NoAuthFailures, port=”http,https”]
maxretry = 3
logpath = /var/log/apache2/access.log

Add the following lines to /etc/fail2ban/filter.d/wp-auth.conf
[Definition]
failregex = ^ .* “POST /wp-login.php
ignoreregex =

Then run as the root user:

service fail2ban reload

FYI,
Richard.

Posted in Network Presence | Tagged | Comments Off on Use Fail2Ban to block WordPress login botnets

Seeking Expressions of Interest in Adelaide VPS/Colo POP

Posted on October 20, 2015 by richard

Based on an offer from a supplier and other extended discussions with local relevant suppliers in the Adelaide Data Centre market, we’re looking to quickly establish an Adelaide POP for Network Presence, focused on servicing the VPS and Colo markets in South Australia with some very attractive pricings and discounts for services of Network Presence purchased to be provided from Adelaide’s major Data Centres.

Ideally, we’d like to get up to 1-2 racks online servicing customers from Adelaide as quickly as possible and to do that we’re offering a Coupon for any VPS or Colo products available at our online Store, provisioned and online ASAP in 2015.

This South Australia and Adelaide POP of Network Presence would have connectivity through to our main Sydney east-coast Australian POP (providing some form of ‘private’ Sydney<->Adelaide connectivity), but would also utilise Adelaide’s geographic location to have its primary transit out west via Perth and its submarine cables to Asia, providing a unique level of redundancy for Network Presence Australian customers.

The Data Centres being considered in Adelaide are fully redundant and are run by some of Australia’s largest Commercial Telcos and please contact us if you’re interested or would like more details.

FYI and regards,
Richard.

Posted in Network Presence, Sales | Tagged , , , , | Comments Off on Seeking Expressions of Interest in Adelaide VPS/Colo POP

Simple image tiler in JavaScript “.. identify regi…

Posted on October 20, 2015 by richard

Simple image tiler in JavaScript “.. identify regions of the image that are interesting” github.com/TravisBarryDic…

Posted in Tweets | Comments Off on Simple image tiler in JavaScript “.. identify regi…

“OTP is nothing but a framework for creating serve…

Posted on October 20, 2015 by richard

“OTP is nothing but a framework for creating servers and process hierarchies.” medium.com/@kansi/getting… Erlang!

Posted in Tweets | Comments Off on “OTP is nothing but a framework for creating serve…

“how open source tools can be used to access, proc…

Posted on October 20, 2015 by richard

“how open source tools can be used to access, process and redistribute satellite imaginery as an accesible web map” wechoosethemoon.es/2015/10/08/lan…

Posted in Tweets | Comments Off on “how open source tools can be used to access, proc…

Get your own cPanel VPS with 2GB RAM by default &a…

Posted on October 20, 2015 by richard

Get your own cPanel VPS with 2GB RAM by default & higher end plans available. networkpresence.com.au/hosting/cpanel… & 10% off with coupon: WHM1#NetPreses

Posted in Tweets | Comments Off on Get your own cPanel VPS with 2GB RAM by default &a…

Large Scale Distributed Deep Learning on Hadoop Cl…

Posted on October 20, 2015 by richard

Large Scale Distributed Deep Learning on Hadoop Clusters yahoohadoop.tumblr.com/post/129872361… A Yahoo presentation from 2015 Hadoop Summit.

Posted in Tweets | Comments Off on Large Scale Distributed Deep Learning on Hadoop Cl…

Nucleon is a dynamic TCP load balancer written in…

Posted on October 20, 2015 by richard

Nucleon is a dynamic TCP load balancer written in Rust. It has the ability to insert/remove backends on the fly. github.com/NicolasLM/nucl…

Posted in Tweets | Comments Off on Nucleon is a dynamic TCP load balancer written in…

httpie is a command-line http client, much like cU…

Posted on October 20, 2015 by richard

httpie is a command-line http client, much like cURL or wget. Written entirely in Python. radek.io/2015/10/20/htt…

Posted in Tweets | Comments Off on httpie is a command-line http client, much like cU…

Data Visualization: What is your Tool of Choice? -…

Posted on October 19, 2015 by richard

Data Visualization: What is your Tool of Choice? – SANS Internet Storm Center isc.sans.edu/forums/diary/D…

Posted in Tweets | Comments Off on Data Visualization: What is your Tool of Choice? -…