Penetration testing & security recommendations &

[adikeinan]

@harryjmoss noticed many failed attempts to log in to the Pybossa server and the dev and live frontend servers via ssh, with various accounts being tried and also attempts to log into the root account. Suggested using Fail2Ban to block IP addresses that fail to login multiple times.

Next step: NIIT to run security testing on the site and prioritise fixes.