On Thu, 2009-07-09 at 10:05 -0500, Neil Aggarwal wrote: > Hello: > > I am considering using DenyHosts. > I am also considering Fail2ban. > > To me, it seems the advantage of Fail2ban is that > it will block more than just SSH attempts. Does > DenyHosts have that ability?
I always configure denyhosts to log blocked hosts to a dedicated file: HOSTS_DENY = /etc/denyhosts.blocked BLOCK_SERVICE = Then in hosts.allow you can use it for specific services, eg. sshd : /etc/denyhosts.blocked : DENY or you could use it to block all services: ALL : /etc/denyhosts.blocked : DENY Of course not everything uses tcp wrappers; you could write a script that adds firewall rules for every host found in /etc/denyhosts.blocked, or play with the PLUGIN_DENY and PLUGIN_PURGE options to manage as denyhosts operates (personally I've not done either yet). Jesse > The big advantage I see for DenyHosts is the > synchronization service. It looks like Fail2ban > does not have that. > > Any insights? > > Thanks, > Neil > > -- > Neil Aggarwal, (281)846-8957, www.JAMMConsulting.com > Will your e-commerce site go offline if you have > a DB server failure, fiber cut, flood, fire, or other disaster? > If so, ask me about our geographically redudant database system. > > > ------------------------------------------------------------------------------ > Enter the BlackBerry Developer Challenge > This is your chance to win up to $100,000 in prizes! For a limited time, > vendors submitting new applications to BlackBerry App World(TM) will have > the opportunity to enter the BlackBerry Developer Challenge. See full prize > details at: http://p.sf.net/sfu/Challenge > _______________________________________________ > Denyhosts-user mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/denyhosts-user -- Jesse Norell Kentec Communications, Inc. [email protected] ------------------------------------------------------------------------------ Enter the BlackBerry Developer Challenge This is your chance to win up to $100,000 in prizes! For a limited time, vendors submitting new applications to BlackBerry App World(TM) will have the opportunity to enter the BlackBerry Developer Challenge. See full prize details at: http://p.sf.net/sfu/Challenge _______________________________________________ Denyhosts-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/denyhosts-user
