I was wondering if fail2ban was available on cloudways instances. I would love managing login attempts and throttling bots with it.
This could even be integrated in the console at application level.
I know I can do this with WordFence and others, but it's so much more efficient. Doing this kind of thing with WP plugins is so inefficient, it still require PHP processes.
While not replacing a full DDoS and WAF service, this is probably still a good affordable and efficient protection and I have the feeling that is being already used for handling ssh login attempts.
Yeah there definitely needs to be a better way to handle blocking IP/requests at the server level. Trying to do this at the application level is just inefficient, time consuming and eats up more resources.
The biggest issue with cloudways is the lack of automatic banning of brute force login attacks and vulnerability scan that are to aggressive. If there was a sever level solution to this Cloudways would be able to offer more secure and stable Cloud server solution then anyone else out there.