From owner-freebsd-questions@FreeBSD.ORG Fri Jun 6 16:16:46 2008 Return-Path: Delivered-To: questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2A9D410656AE for ; Fri, 6 Jun 2008 16:16:46 +0000 (UTC) (envelope-from derek@computinginnovations.com) Received: from betty.computinginnovations.com (mail.computinginnovations.com [64.81.227.250]) by mx1.freebsd.org (Postfix) with ESMTP id F1F238FC3B for ; Fri, 6 Jun 2008 16:16:45 +0000 (UTC) (envelope-from derek@computinginnovations.com) Received: from p28.computinginnovations.com (dhcp-10-20-30-100.computinginnovations.com [10.20.30.100]) (authenticated bits=0) by betty.computinginnovations.com (8.14.2/8.14.2) with ESMTP id m56GGSON033119; Fri, 6 Jun 2008 11:16:30 -0500 (CDT) (envelope-from derek@computinginnovations.com) Message-Id: <6.0.0.22.2.20080606111601.0254f4f8@mail.computinginnovations.com> X-Sender: derek@mail.computinginnovations.com X-Mailer: QUALCOMM Windows Eudora Version 6.0.0.22 Date: Fri, 06 Jun 2008 11:16:24 -0500 To: Frank Shute From: Derek Ragona In-Reply-To: <20080606035604.GA80471@melon.esperance-linux.co.uk> References: <48485C59.3060504@netfence.it> <6.0.0.22.2.20080605181810.025867c8@mail.computinginnovations.com> <20080606035604.GA80471@melon.esperance-linux.co.uk> Mime-Version: 1.0 X-Virus-Scanned: ClamAV 0.93/6806/Wed Apr 16 15:50:16 2008 on betty.computinginnovations.com X-Virus-Status: Clean X-ComputingInnovations-MailScanner-Information: Please contact the ISP for more information X-MailScanner-ID: m56GGSON033119 X-ComputingInnovations-MailScanner: Found to be clean X-ComputingInnovations-MailScanner-From: derek@computinginnovations.com X-Spam-Status: No Content-Type: text/plain; charset="us-ascii"; format=flowed X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: questions@freebsd.org Subject: Re: Denyhost X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 06 Jun 2008 16:16:46 -0000 At 10:56 PM 6/5/2008, Frank Shute wrote: >On Thu, Jun 05, 2008 at 06:19:26PM -0500, Derek Ragona wrote: > > > > At 04:36 PM 6/5/2008, Andrea Venturoli wrote: > > > > > >Anyone using this? > > >I've used it for a long time on a 6.x box and it worked fine. > > >Recently I had to deactivate it since it seems to lock away every IP > which > > >is listed in the logs. > > >Any hint? > > > > > > bye & Thanks > > > av. > > > > I believe denyhost has been deprecated. I use /etc/hosts.allow which > works > > fine and combines both allow and deny functions in one configuration file. > > > > -Derek > > > >Derek, I think Andrea meant the port security/denyhosts which monitors >your ssh port and adds dodgy IPs which attack 22 to hosts.allow (I >think - I haven't used it yet). Are you thinking of hosts.deny? Yes I was, sorry for my mistake. -Derek >I guess you can configure it as to how it blocks the IPs. > >Andrea, have a look at hosts.allow to see how it's blocking those IPs >and you should be able to remove them or relax the rules. You have to >give inetd a HUP to reread hosts.allow. > >HTH. > >Regards, > >-- > > Frank > > > Contact info: http://www.shute.org.uk/misc/contact.html > >_______________________________________________ >freebsd-questions@freebsd.org mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-questions >To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > >-- >This message has been scanned for viruses and >dangerous content by MailScanner, and is >believed to be clean. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.