Odoo security with Fail2ban
Odoo security with Fail2ban is the result of my collaboration with Cyril Jacquier to the Fail2ban project. Through my implementations and throughout the life-cycle of an Odoo system, I have been confronted like so many system administrators with login attacks. Since Odoo is an online web-based ERP, nothing is easier than injecting POST requests and try to penetrate the system by brute-forcing the Login Interface.
As a result, I turned to Fail2Ban in order to parse the logs and ban from the NAT of the Odoo server the nasty IPs that kept sucking out bandwisth and CPU and compromising our client’s […] Read more