To design a monitoring system that detects repeated failed SSH login attempts and automatically blocks suspicious IP addresses to prevent brute-force attacks.
Study SSH authentication mechanisms.
Analyze server log files.
Detect repeated failed login attempts.
Set threshold-based alert triggers.
Implement automatic IP blocking logic.
Maintain blocked IP database.
Create real-time monitoring dashboard.
Simulate brute-force attack in lab.
Measure response time of detection.
Add email alert notification.
Evaluate system effectiveness.
Document results and improvements.
