[Box Backup] Advice for users of Debian-derived systems affected by the OpenSSL fiasco -- assume compromise of all data

[Matt Brown]

Hi Pete,

> This week, it's Debian, next week, who knows.  Presuming that this
> won't be the last time we need to update keys, and maybe it's good
> security policy anyway, does anyone out there know of a way to slow
> down brute force attacks on our Box Backup servers?

I tend to use Fail2Ban to block brute force and failed logins - mainly  
for SSH (but can be customised for other applications).

I have now implemented a FireWall policy that only allows connections  
from our clients IP addresses.

HTH

Matt