BanFromLog is a shell script that examines your /var/log/auth.log and searches for the IP addresses of login attempts which use non-existent user names. It is configured for use with sqlite or MySQL.
Recent releases


Changes: Prints in HTML the list of banned IPs (the previous version, in the option "show", only looked in the "actual" log and not in the database). A bug has been corrected in the MySQL version (iptables -i ... s ip -j DROP).


Changes: Compatibility with sqlite was included. The code was merged into a single script. Documentation in English and Spanish was added.
A security filter for vulnerable sites using regex patterns.