Welcome to Richard's Blog

Category: Personal Life Blog

How to secure our SSH with fail2ban 1GB Ram on Pi,
1. Update the system (important on Pi)
```
sudo apt update && sudo apt upgrade -y
```
Optional but recommended:
```
sudo reboot
```
2. Install Fail2Ban (very lightweight)
```
sudo apt install fail2ban -y
```
Memory usage on Pi: ~20–30 MB RAM idle ✅

3. Verify Fail2Ban is running
```
sudo systemctl status fail2ban
```
You should see:
```
Active: active (running)
```
If not:
```
sudo systemctl enable --now fail2ban
```
4. Create your local config (DO NOT edit defaults)

Fail2Ban updates will overwrite defaults — always use .local.
```
sudo cp /etc/fail2ban/jail.conf /etc/fail2ban/jail.local
```
Or lighter (recommended for Pi):
```
sudo nano /etc/fail2ban/jail.local
```
Paste this minimal + safe config:
```
[DEFAULT]
bantime  = 1h
findtime = 10m
maxretry = 5
backend  = systemd
ignoreip = 127.0.0.1/8 ::1

[sshd]
enabled = true
port    = ssh
logpath = %(sshd_log)s
```
💡 backend = systemd is faster and more reliable on modern Pi OS.

5. Restart Fail2Ban
```
sudo systemctl restart fail2ban
```
6. Confirm SSH jail is active
```
sudo fail2ban-client status
```
Expected:
```
Jail list: sshd
```
Check banned IPs:
```
sudo fail2ban-client status sshd
```
7. Reduce resource usage (IMPORTANT for 1 GB Pi)

Edit:
```
sudo nano /etc/fail2ban/fail2ban.conf
```
Set:
```
loglevel = INFO
logtarget = /var/log/fail2ban.log
```
Optional: disable polling (systemd handles logs efficiently).

8. Enable log rotation (prevents SD wear)

Check:
```
sudo nano /etc/logrotate.d/fail2ban
```
Recommended content:
```
/var/log/fail2ban.log {
    weekly
    rotate 4
    compress
    missingok
    notifempty
}
```
9. Test Fail2Ban (safe test)

From another machine:
```
ssh wronguser@pi-ip
```
Fail 5 times → IP gets banned.

Unban yourself:
```
sudo fail2ban-client set sshd unbanip YOUR_IP
```
10. Optional hardening (strongly recommended)

Disable SSH passwords
```
sudo nano /etc/ssh/sshd_config
```
Set:
```
PasswordAuthentication no
PermitRootLogin no
```
Restart SSH:
```
sudo systemctl restart ssh
```
Summary (Pi-optimized)

✔ Low RAM usage
✔ SD-card friendly logging
✔ SSH protected
✔ systemd backend
✔ Safe upgrade-proof config
February 4, 2026
My kiddo ❤️ and my mom’s cats

Crazy, right? It’s been almost a year and a half since my cats moved in with Mom, and they’re living in the garage now – they’ve got toys, a home, food, and water. When we get our 5 cats and put them in the house, it’ll be chaos! Too much fur on the hardwood and stairs.

I’m spending a ton on our cats—food, treats, scratching posts, medicine, the works! Mom’s a lifesaver with the litter and sometimes toys. So grateful for her help! 🙏🙌❤️

June 6, 2025
From Barback to IT Leader: My Unconventional Career Journey

When I look back on my career, I’m amazed at how each role—even those that seemed unrelated—helped shape who I am today. My path began far from servers and networks, in the fast-paced world of hospitality.

Starting Out: Teamwork Behind the Bar

In 2017, I got my start as a barback. I worked behind the bar, restocking supplies, washing glasses, and helping bartenders serve guests quickly. It was more than just keeping the bar running. Here, I learned how important teamwork is, how to pay attention to small details, and how to stay calm—even when things got hectic.

Into the Kitchen: Learning to Multitask

After a year, I moved into the kitchen as a front-line cook. This job was all about preparing meals, managing inventory, and keeping up with food safety standards. The kitchen taught me how to handle pressure, juggle many tasks at once, and always strive for quality—even during the busiest dinner rush.

On the Road: Meeting Customers Face-to-Face

Next, I became a delivery driver. I learned how to interact with customers, handle unexpected problems, and provide great service no matter what. Communication and patience became my strengths, and I loved seeing happy customers.

Taking the Leap: Discovering IT

Driven by curiosity, I took on an unpaid IT internship. Even though it was short, it was a turning point. I helped solve technical problems, supported staff, and learned the basics of managing IT systems. This experience sparked my passion for technology and opened new doors for me.

Stepping Up: Leading in IT

Since 2018, I’ve been the IT and Network Manager at my company, and a Linux Server Administrator. I oversee network security, coordinate software updates, work with vendors, and make sure technology runs smoothly for everyone. I also lead projects and train staff, which has helped me become a stronger leader and problem-solver.

Expanding My Role: Managing Multiple Locations

Recently, I began overseeing maintenance for six Anthem Coffee stores in Washington. Now, I troubleshoot equipment, keep facilities running, and help each location operate smoothly. Balancing this with my IT duties has made me more organized, adaptable, and proud of the work I do.

Looking Back—and Looking Ahead

My journey has never been a straight line, but every step taught me something new. Adaptability, curiosity, and a love of learning have guided me. Each experience—from barback to IT manager—gave me valuable skills I use every day.

I’m grateful for a career built on growth and discovery. As I look ahead, I’m excited to keep learning, keep improving, and keep making a difference—wherever my path takes me.

Curious about my journey or want to connect? I’m always happy to share stories or help however I can!

Let me know if you want to adjust the tone—more formal, shorter, or with a specific focus!

Video of my work:

Photos of my work

I installed a wall-mounted shelf for Anthem Litchfield.

Added Ethernet Port for KDS

broke in Sunrise Village and we couldnt find same day windows guy so I did replace for them.

before, Screen was dropped and I have to replace screen so we save money

After

After

Before

Ads TV

TV Mount

That where tv is

completed

look good

another ads

and more Work blog here

Personal Life Blog, Work

May 16, 2025