Author: megabajt Date: Thu Jun 22 16:51:04 2006 GMT Module: SOURCES Tag: HEAD ---- Log message: - updated for 2.5
---- Files affected: SOURCES: DenyHosts.cfg (1.7 -> 1.8) ---- Diffs: ================================================================ Index: SOURCES/DenyHosts.cfg diff -u SOURCES/DenyHosts.cfg:1.7 SOURCES/DenyHosts.cfg:1.8 --- SOURCES/DenyHosts.cfg:1.7 Sun Apr 9 20:30:29 2006 +++ SOURCES/DenyHosts.cfg Thu Jun 22 18:50:59 2006 @@ -17,7 +17,7 @@ # SuSE: #SECURE_LOG = /var/log/messages # -# Mac OS X (v10.4 or greater - +# Mac OS X (v10.4 or greater - # also refer to: http://www.denyhosts.net/faq.html#macos #SECURE_LOG = /private/var/log/asl.log # @@ -27,6 +27,7 @@ ######################################################################## ######################################################################## +# # HOSTS_DENY: the file which contains restricted host access information # # Most operating systems: @@ -39,7 +40,9 @@ #HOSTS_DENY = /etc/hosts.evil ####################################################################### + ######################################################################## +# # PURGE_DENY: removed HOSTS_DENY entries that are older than this time # when DenyHosts is invoked with the --purge flag # @@ -63,19 +66,21 @@ ####################################################################### # -# PURGE_THRESHOLD: defines the maximum times a host will be purged. -# Once this value has been exceeded then this host will not be purged. +# PURGE_THRESHOLD: defines the maximum times a host will be purged. +# Once this value has been exceeded then this host will not be purged. # Setting this parameter to 0 (the default) disables this feature. # # default: a denied host can be purged/re-added indefinitely #PURGE_THRESHOLD = 0 # -# a denied host will be purged at most 2 times. -#PURGE_THRESHOLD = 2 +# a denied host will be purged at most 2 times. +#PURGE_THRESHOLD = 2 # ####################################################################### + ####################################################################### +# # BLOCK_SERVICE: the service name that should be blocked in HOSTS_DENY # # man 5 hosts_access for details @@ -93,6 +98,7 @@ # ####################################################################### + ####################################################################### # # DENY_THRESHOLD_INVALID: block each host after the number of failed login @@ -124,16 +130,18 @@ # ####################################################################### + ####################################################################### # -# DENY_THRESHOLD_RESTRICTED: block each host after the number of failed -# login attempts has exceeded this value. This value applies to +# DENY_THRESHOLD_RESTRICTED: block each host after the number of failed +# login attempts has exceeded this value. This value applies to # usernames that appear in the WORK_DIR/restricted-usernames file only. # DENY_THRESHOLD_RESTRICTED = 1 # ####################################################################### + ####################################################################### # # WORK_DIR: the path that DenyHosts will use for writing data to @@ -172,6 +180,7 @@ # ###################################################################### + ###################################################################### # # LOCK_FILE @@ -204,15 +213,19 @@ # match your email address. If you do not want to receive these reports # leave this field blank (or run with the --noemail option) # +# Multiple email addresses can be delimited by a comma, eg: +# ADMIN_EMAIL = [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED] +# ADMIN_EMAIL = [EMAIL PROTECTED] # ####################################################################### ####################################################################### # -# SMTP_HOST and SMTP_PORT: if DenyHosts is configured to email -# reports (see ADMIN_EMAIL) then these settings specify the +# SMTP_HOST and SMTP_PORT: if DenyHosts is configured to email +# reports (see ADMIN_EMAIL) then these settings specify the # email server address (SMTP_HOST) and the server port (SMTP_PORT) +# # SMTP_HOST = localhost SMTP_PORT = 25 @@ -220,14 +233,14 @@ ####################################################################### ####################################################################### -# -# SMTP_USERNAME and SMTP_PASSWORD: set these parameters if your +# +# SMTP_USERNAME and SMTP_PASSWORD: set these parameters if your # smtp email server requires authentication # #SMTP_USERNAME=foo #SMTP_PASSWORD=bar # -####################################################################### +###################################################################### ####################################################################### # @@ -321,22 +334,23 @@ # ###################################################################### -###################################################################### -# +###################################################################### +# # AGE_RESET_RESTRICTED: Specifies the period of time between failed login -# attempts that, when exceeded will result in the failed count for -# this host to be reset to 0. This value applies to all login -# attempts to entries found in the WORK_DIR/restricted-usernames file. +# attempts that, when exceeded will result in the failed count for +# this host to be reset to 0. This value applies to all login +# attempts to entries found in the WORK_DIR/restricted-usernames file. # If not defined, the count will never be reset. # -# See the comments in the PURGE_DENY section (above) -# for details on specifying this value or for complete details +# See the comments in the PURGE_DENY section (above) +# for details on specifying this value or for complete details # refer to: http://denyhosts.sourceforge.net/faq.html#timespec # AGE_RESET_RESTRICTED=25d # ###################################################################### + ###################################################################### # # AGE_RESET_INVALID: Specifies the period of time between failed login @@ -353,11 +367,12 @@ # ###################################################################### + ###################################################################### # # RESET_ON_SUCCESS: If this parameter is set to "yes" then the # failed count for the respective ip address will be reset to 0 -# if the login is successful. +# if the login is successful. # # The default is RESET_ON_SUCCESS = no # @@ -365,6 +380,7 @@ # ##################################################################### + ###################################################################### # # PLUGIN_DENY: If set, this value should point to an executable @@ -551,6 +567,8 @@ #SYNC_DOWNLOAD = no #SYNC_DOWNLOAD = yes # +# +# ####################################################################### ####################################################################### @@ -559,14 +577,15 @@ # filters the returned hosts to those that have been blocked this many # times by others. That is, if set to 1, then if a single DenyHosts # server has denied an ip address then you will receive the denied host. -# -# See also SYNC_DOWNLOAD_RESILIENCY # +# See also SYNC_DOWNLOAD_RESILIENCY +# #SYNC_DOWNLOAD_THRESHOLD = 10 # -# The default is SYNC_DOWNLOAD_THRESHOLD = 3 +# The default is SYNC_DOWNLOAD_THRESHOLD = 3 +# #SYNC_DOWNLOAD_THRESHOLD = 3 -# +# ####################################################################### ####################################################################### @@ -575,19 +594,19 @@ # value specified for this option limits the downloaded data # to this resiliency period or greater. # -# Resiliency is defined as the timespan between a hackers first known +# Resiliency is defined as the timespan between a hackers first known # attack and it's most recent attack. Example: -# -# If the centralized denyhosts.net server records an attack at 2 PM -# and then again at 5 PM, specifying a SYNC_DOWNLOAD_RESILIENCY = 4h +# +# If the centralized denyhosts.net server records an attack at 2 PM +# and then again at 5 PM, specifying a SYNC_DOWNLOAD_RESILIENCY = 4h # will not download this ip address. # -# However, if the attacker is recorded again at 6:15 PM then the -# ip address will be downloaded by your DenyHosts instance. +# However, if the attacker is recorded again at 6:15 PM then the +# ip address will be downloaded by your DenyHosts instance. # -# This value is used in conjunction with the SYNC_DOWNLOAD_THRESHOLD -# and only hosts that satisfy both values will be downloaded. -# This value has no effect if SYNC_DOWNLOAD_THRESHOLD = 1 +# This value is used in conjunction with the SYNC_DOWNLOAD_THRESHOLD +# and only hosts that satisfy both values will be downloaded. +# This value has no effect if SYNC_DOWNLOAD_THRESHOLD = 1 # # The default is SYNC_DOWNLOAD_RESILIENCY = 5h (5 hours) # ================================================================ ---- CVS-web: http://cvs.pld-linux.org/SOURCES/DenyHosts.cfg?r1=1.7&r2=1.8&f=u _______________________________________________ pld-cvs-commit mailing list pld-cvs-commit@lists.pld-linux.org http://lists.pld-linux.org/mailman/listinfo/pld-cvs-commit