- Code: Select all
1. Download Brutelock agent, and save to /usr/local/.
- Code: Select all
2.cd /usr/local/
- Code: Select all
3.tar -xjvf brutelock-version_number.tar.bz2
- Code: Select all
4.cd /usr/local/brutelock-version_number
- Code: Select all
5. ./configure
- Code: Select all
6. make
- Code: Select all
7. make install
8. Edit the new configuration file (/usr/local/brutelock/conf/brutelock.conf) with your subscription key *.
9. Also edit the path to your ssh log in the configuration file if you need to. If you are unsure where that is for your system, please consult the README included with the Brutelock source. Uncomment any of the other services you wish to protect as well such as ftp, pop, and imap.
- Code: Select all
10. Add any IP's to the /usr/local/brutelock/conf/whitelist file (each on separate lines) for any IP's that Brutelock should never lock out **.
- Code: Select all
11. Add a separate chain to iptables:
/sbin/iptables -N Brutelock-Firewall-INPUT
/sbin/iptables -I INPUT -j Brutelock-Firewall-INPUT
- Code: Select all
12. Start Brutelock daemon:
/usr/local/brutelock/bin/brutelockd
13. Sit back and watch the number of failed login attempts drastically diminish from your logs.
* - If you do not have a subscription key, make sure to sign-up to receive yours. You can choose the free option which allows Brutelock to actively block brute force attacks or one of the paid subscriptions to allow Brutelock to proactively protect your servers by receiving constant updates from the Brutelock service.
