If you run a Linux server with Nginx, SSH, or WordPress, you probably already know Fail2Ban. It is a solid tool, but it works locally — it blocks only the IP addresses that attacked your server. CrowdSec works in a completely different way. It is a protection system based on shared IP reputation. If thousands […]
If you use Fail2Ban with Nginx and WordPress, sooner or later you’ll notice one thing: the same IP addresses keep coming back. They get banned for a few minutes or an hour, disappear… and shortly after try again /.env, /wp-login.php, /phpmyadmin, or other common attack paths. The solution is not to aggressively tighten the filters. […]
Proxmox VE 9 is based on Debian 13 (Trixie) and introduces a newer kernel, updated LXC, QEMU and improved virtualization stack. This guide presents a simplified and automated method to install Proxmox VE 9 on a clean Debian 13 system using two installation scripts. The method follows the same approach as my previous Proxmox 8 […]
This guide shows a complete Fail2Ban installation and configuration for Nginx, designed to: block real scanners and exploit attempts (e.g. requests to /.env, /.git, /phpmyadmin, etc.), avoid blocking administrators by accident (common issue when banning only by HTTP errors), ban IP addresses after repeated suspicious activity, use a short ban time (5 minutes) to reduce […]
Upgrading Debian from version 12 (bookworm) to 13 (trixie) is an operation that should be performed in a repeatable and predictable way, especially on servers and containers (for example Proxmox LXC or virtual machines). Below you will find a simple guide and ready-to-use commands to download and run the upgrade script. Before running the upgrade: […]
Soban