Display recent login failures on login

security linux ubuntu

There are a couple of packages that you can use to help with brute force attacks.

  1. Denyhosts
  2. Fail2ban

To collect logs and send you a report you can use logwatch. It can send a summary of failed logons as well.

To answer your original question you can put your script in "/etc/profile.d/yourscript.sh" and it should be executed on login.

You might also consider setting up the arno-iptables-firewall package.


It's really shell dependent. For bash, you should put it in .bash_login file.

Regarding brute force atack prevention, aside from what's already been sugested for blacklisting the attacker's IP, I usually tell sshd to listen on a nonstandard port and disable the password authentication. Of course, that might not always be possible, but it sure is effective.

Related

Invoke Remote Desktop Connection from Hyperlink
How do you copy huge (millions) directory trees in Windows?
How do I automatically restart a process on server reboot/process exit?
Mount TrueCrypt encrypted system drive on other computer?
Windows XP Full Disk Encryption - What are the options?
In UNIX, how can I cat a file located in a different server?
Enabling gzip compression in IIS and having it take effect
How many valid NAT mappings can a common NAT support?
Hyper-V Requirements, disk partitioning
Getting full path of executables in 'ps auxwww' output
AD: Can you be member of unlimited groups?
How can I see which processes locked a file?