This article will guide you how to install Brute Force Detection on Centos/RHEL server.
Brute Force Protection prevents malicious forces from trying to access your server’s services by guessing the login password for that service.
To download BFD perform the following command.
# cd /usr/local/src
# wget http://www.rfxnetworks.com/downloads/bfd-current.tar.gz
# tar -xvzf bfd-current.tar.gz
# cd bfd-a.bc
# ./install.sh
# wget http://www.rfxnetworks.com/downloads/bfd-current.tar.gz
# tar -xvzf bfd-current.tar.gz
# cd bfd-a.bc
# ./install.sh
Config path: /usr/local/bfd/conf.bfd
Install path: /usr/local/bfd
Executable path: /usr/local/sbin/bfd
Edit the configuration file:
# vim /usr/local/bfd/conf.bfd
Enable brute force hack attempt alerts:
1. Find: ALERT_USR=”0″ Change it to: ALERT_USR=”1″
2. Find: EMAIL_USR=”root” Change it to: EMAIL_USR=admin@linuxpcfix.com
Save and Exit
To white-list your static IP add your IP to “trusted IPs”
# vi /usr/local/bfd/ignore.hosts
192.168.3.2
You can run BFD now:
# /usr/local/sbin/bfd -s
That’s it.