Download Brutelock
Download the Open Source Brutelock program. This download provides both real-time protection against brute force/dictionary attacks using the Brutelock daemon, as well as includes the sync program to grab updates from the Brutelock subscription service.
System Requirements
Currently Brutelock runs on most Linux distributions with iptables and can be downloaded, installed and running in less than 2 minutes!
The Brutelock agent requires the following libraries:
- libxml2
- sqlite3
- libcurl
How to Install
Install from source
There are just a few steps to install the Brutelock agent:
- Download Brutelock agent, and save to /usr/local/
cd /usr/local/
tar -xjvf brutelock-version_number.tar.bz2
cd /usr/local/brutelock-version_number
./configure
make
make install
- Edit the new configuration file (/usr/local/brutelock/conf/brutelock.conf) with your subscription key.
- Also edit the path to your ssh log in the configuration file if you need to. If you are unsure where that is for your system, please consult the README included with the Brutelock source
- Add any IP's to the conf/whitelist file (each on separate lines) for any IP's that Brutelock should never lock out.
- Add a separate chain to iptables:
/sbin/iptables -N Brutelock-Firewall-INPUT
/sbin/iptables -I INPUT -j Brutelock-Firewall-INPUT
- Start Brutelock daemon:
/usr/local/brutelock/bin/brutelockd
- Sit back and watch the number of failed login attempts drastically diminish from your logs.
Don't forget to get your subscription key to make full use of the Brutelock service!
Using Brutelock with other scripts
The Brutelock subscription service can also be accessed via other locking scripts and programs. Since the subscription service uses a simple REST webservice service call, just about any script can be modified to access it.
Please check our Developers section for more information.