Administrator Chat-Net wrote: > I sent this message a couple of days ago.. DenyHosts still is denying > the host mail.cars.com.ve.. > -> > $ cat /etc/hosts.deny|grep mail.cars.com.ve|wc -l > 2376 > > We blocked this address (and his IP) in the Firewall and specified his > ip in the hosts-file (so that denyhost could resolve it's IP faster) > but it doesn't work.. > Furthermore, the host isn't connecting anymore.. > > Is this a bug?
Think about how DenyHosts works, the IP can only be added in two ways: one if it appears in the log file it is watching in the last period, and two if it is received by the sync function because it was reported in other places. To be added the precondition is that the IP is not already there. I don't see the same problem, in fact the IP appears only once in /etc/hosts.deny and 71 times in /usr/share/denyhosts/data/sync-received; so the IP is being reported but denyhosts doesn't duplicate entries. What could be wrong? You don't give detailed information so the following are _only_guesses_: - The log file it is watching is in a non-standard format (no time-stamps perhaps?) or corrupted. - You have a corrupted hosts.deny and somehow denyhosts doesn't see that the entry is already there. - You have a corrupted denyhosts (what version are you using?) and it's not working (you don't say if it catches other attempts for instance). Do you have anything interesting in the denyhosts log? Have you ran the program in debug mode? -- René Berber ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ Denyhosts-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/denyhosts-user
