2 Replies to “BSD hardening scripts”

1. Are there scripts for OpenBSD because it’s so secure by default?

2. Well, when I first started by BSD journey some months back I used OpenBSD for my Website, DNS, and Email server. It was then I wrote my first Python script out of a need to block the thousands of SSH attempts per hour until I could learn my Hosts firewall application rules and pick a safe port, etc.

   So, I have a unique OpenBSD authlog script that parses against a whitelist and will hot reload pf tables with anyone un-authorized for SSH. It also configures the a robust multi-homed Firewall pf.conf to block all Vulnerability Scanners and Bad Robots.

   In addition, I made a GoAcess Web Stats Analyzer configurator for OpenBSD, auto-configures ASN data, allows UptimeRobot and UpDown.io http monitoring through the firewall and is themed in OpenBSD colors.

Comments are closed.

To respond on your own website, enter the URL of your response which should contain a link to this post's permalink URL. Your response will then appear (possibly after moderation) on this page. Want to update or remove your response? Update or delete your post and re-enter your post's URL again. (Learn More)