ssh Archives - blog.icod.de https://blog.icod.de/tag/ssh/ Webentwicklung und sonstiger Unsinn :) Web development and other nonsense :) Wed, 19 Mar 2025 13:13:40 +0000 en-US hourly 1 https://wordpress.org/?v=6.9.4 https://blog.icod.de/wp-content/uploads/2017/04/darko-luketic-foto.256x256-150x150.jpg ssh Archives - blog.icod.de https://blog.icod.de/tag/ssh/ 32 32 gitea log configuration for fail2ban https://blog.icod.de/2025/03/19/gitea-log-configuration-for-fail2ban/ https://blog.icod.de/2025/03/19/gitea-log-configuration-for-fail2ban/#respond Wed, 19 Mar 2025 13:10:46 +0000 https://blog.icod.de/?p=2301 Gitea since 1.21 has a different logging configuration format. TL;DR If you want to configure fail2ban to ban those failed ssh login attempts, use this log section in app.ini [crayon-69c8a9009d70d645901515/] Sadly you can’t turn off all logging except the SSH log. You have to wear your SSD. The actual fail2ban configuration is described on their…

The post gitea log configuration for fail2ban appeared first on blog.icod.de.

]]> https://blog.icod.de/2025/03/19/gitea-log-configuration-for-fail2ban/feed/ 0 sshd sftp chroot jail howto https://blog.icod.de/2023/10/05/sshd-sftp-chroot-jail-howto/ https://blog.icod.de/2023/10/05/sshd-sftp-chroot-jail-howto/#respond Thu, 05 Oct 2023 15:00:42 +0000 https://blog.icod.de/?p=1960 Problem description: You would like to jail users to their home directories and not allow shell access, only sftp access. Solution: SFTP chroot jail 1. Create a system group. Here I call it sftponly. [crayon-69c8a9009d89c856635292/] 2. edit the sshd_config file, usually residing in /etc/ssh/sshd_config (in weird opensuse it’s in /usr/etc/sshd/ ) and append (it needs…

The post sshd sftp chroot jail howto appeared first on blog.icod.de.

]]> https://blog.icod.de/2023/10/05/sshd-sftp-chroot-jail-howto/feed/ 0