[bush-bby]

> Been there, done that. It was a mistake. Not sure which attacks my public PiHole was part of, but I surely was part of some.

How did you come to this conclusion? How did you come to know?

[martin_a]

The PiHole has some integrated logging where you can see the requests that were made. I had several IPs which were doing queries for the same domains dozens of times per second. That wasn't a poweruser but some kind of automated system, probably doing reflection attacks or sth. alike.

I think PiHole has improved since that time, you can now set throttling, but I'm not sure I'd run a public PiHole anymore.

[pluc]

pihole + fail2ban

google that my man

[martin_a]

Thanks! Only knew fail2ban from securing SSH, but yeah, works for other daemons, too...