Article Per Year (5 Year)
p-Index From 2020 - 2025
0.23
P-Index
This Author published in this journals
All Journal ITEj (Information Technology Engineering Journals)
Tely, Aristo
Unknown Affiliation
Computer Science & IT Decision Sciences, Operations Research & Management Education Electrical & Electronics Engineering Mathematics

Published : 1 Documents Claim Missing Document
Claim Missing Document
Check
Articles

Found 1 Documents
Search

 1 
Sharing SSH Threat Intelligence across Multiple Servers using WebSocket and Fail2Ban Tely, Aristo; Aryanti, Aryanti; Soim, Sopian
ITEJ (Information Technology Engineering Journals) Vol 10 No 2 (2025): December (In Progress)
Publisher : Pusat Teknologi Informasi dan Pangkalan Data IAIN Syekh Nurjati Cirebon

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.24235/itej.v10i2.270

Abstract

This study presents a lightweight prototype designed to improve SSH brute-force defense by enabling collaborative IP blocking across multiple servers. The system integrates Fail2Ban with WebSocket to distribute banned IP addresses in real-time among trusted nodes eliminating the need for centralized infrastructure. The experiment was conducted on 3 virtual private servers (VPS), where one acted as the WebSocket server and the others as clients equipped with Fail2Ban. When an SSH brute-force attack is detected, the source IP is automatically shared across the network and blocked on all connected nodes. A qualitative observational approach was used to evaluate the system’s feasibility. Log data from the clients and server was analyzed to confirm the accuracy and consistency of IP synchronization. The results showed that banned IPs were propagated and enforced on all nodes within seconds of detection. These findings demonstrate the potential for decentralized, lightweight collaboration among SSH servers to enhance security without introducing complex infrastructure or external dependencies.
Co-Authors Aryanti Aryanti Sopian Soim, Sopian