From dd0bdef64010eef5f550314bdd919135a248b7cb Mon Sep 17 00:00:00 2001
From: kri3v <fireball764@gmail.com>
Date: Thu, 2 Jul 2015 12:55:43 -0300
Subject: [PATCH] Added more bantime and lowered max retry attempts

Ban time was too low for preventing ssh brute force attacks, this change also allows to keep the auth.log more clean and avoid wasting cpu and i/o on this.

Bots eventually will flag your IP as secure and move along.
---
 conf/fail2ban/jail.local | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/conf/fail2ban/jail.local b/conf/fail2ban/jail.local
index 48a30fa9..ad554ad8 100644
--- a/conf/fail2ban/jail.local
+++ b/conf/fail2ban/jail.local
@@ -8,6 +8,12 @@ maxretry = 20
 
 # JAILS
 
+[ssh]
+enabled  = true
+maxretry = 7
+findtime = 120
+bantime = 3600
+
 [ssh-ddos]
 enabled  = true