We've now obscured our point of entry to the Pi and changed our password to something a little more complicated. Well, a determined hacker or bot can still beat us by brute forcing us with guesses. Many websites / login entry portals have a limited number of guesses before you're asked to stop trying. We can implement our own.

In this tutorial I show you how to install Fail2Ban IP blocking software such that too many failed login attempts blocks the requesting IP address. This will effectively lock out anyone with malicious intent, securing our web server.

This tutorial is a little older (published in 2014!). The main principles are still relevant, so I haven't needed to update this lesson.