Displaying 20 results from an estimated 120 matches similar to: "denyhosts configuration"
2017 Oct 15
0
denyhosts-2.9-4.el7 not resync'ing
Everyone,
It is apparent that the epel version of denyhosts on Centos 7 which is
denyhosts-2.9-4.el7.noarch does not resynch with :
SYNC_SERVER = http://xmlrpc.denyhosts.net:9911
According to :
https://www.centos.org/forums/viewtopic.php?f=51&t=56989
the problem is related to a version update problem in the epel
repositories.
I submitted a bugzilla report :
2001 Feb 27
4
AllowHosts / DenyHosts
I'd like to see a feature of the commercial ssh in openssh:
AllowHosts xxx.yyy.xxx.yyy *.domain.net
DenyHosts xxx.yyy.xxx.* name.domain.net
This allows or denies connects from certain machines (including wildcard
matching).
Is there any chance for this feature to be included? No, we don't want to
use tcp-wrapper for this.
Bye.
2007 Oct 02
1
denyhosts
Hi,
My denyhosts stop working. How do i check why isnt it working anymore for
me?
Thanks
Oct 2 22:59:17 beyond sshd[15690]: Failed password for root from
221.7.37.142 port 49836 ssh2
Oct 2 22:59:17 beyond sshd[15692]: Received disconnect from 221.7.37.142:
11: Bye Bye
Oct 2 22:59:18 beyond sshd[15701]: pam_unix(sshd:auth): authentication
failure; logname= uid=0 euid=0 tty=ssh ruser=
2007 Mar 13
4
Centos-specific Denyhosts Howto Anyone?
Hi, after reading the docs (no man page) and seeing a few example
howtos, I see none for Centos specifically.
I hereby offer to write this and even host it, and any other wiki-able
howto you want, if you can school me on the first few steps relevant to
how to link up the current rpmforge rpm for RHEL4-64. See, right now,
the one for centos loads into the /usr/share/doc, which is an odd place
2008 Jan 21
5
denyhosts-like app for MySQLd?
Hi all,
?Is there any app like denyhosts[1] but intended for MySQLd service?
We have a mysql ports (3306) opened for remote connections, and
obviously the /var/db/mysql/machine_name.log is full of these kind of
entries:
...........
936012 Connect Access denied for user 'user'@'85.19.95.10' (using
password: YES)
936013 Connect Access denied for user
2009 Jul 09
3
Looking for recommendations for blocking hacking attempts
Hello:
I have been looking into projects that will automatically
restrict hacking attempts on my servers running CentOS 5.
I think the two top contenders are:
DenyHosts - http://denyhosts.sourceforge.net
Fail2ban - http://www.fail2ban.org
>From what I see, DenyHosts only blocks based on failed
SSH attempts whereas Fail2ban blocks failed attempts
for other access as well.
The main benefit
2000 Dec 28
1
COMPATIBILITY: AllowHosts/DenyHosts/SilentDeny not supported
Hi,
here's another feature request that I just found and where I would like
to hear your comments first:
> The above commands are valid ssh-nonfree, but openssh doesn't like them. The
> first two are important for security conscious sites.
Ciao
Christian
--
Debian Developer and Quality Assurance Team Member
1024/26CC7853 31E6 A8CA 68FC 284F 7D16 63EC A9E6
2010 Nov 10
2
need to block user by IP address (tried denyhosts, xinetd, iptables etc)
Hi,
I am kind of restricted to using packaged versions of software due to
company policy, and we have f12 on our mail server with
dovecot-1.2.15-2.fc12.i686 package.
we have recently had some brute force attacks on the pop3 and imapd and
this results in many processes being used for login attempts.
Our dovecot is hosted on a Virtual Private Server which restricts access
to IPTABLEs and also
2006 Jan 09
0
Re: Logcheck-users Digest, Vol 5, Issue 1
The entry is probably not igored because of
the word deny in your path .
You might better set your rule in violation.ignore.d/ directory.
At 13:00 09/01/2006, you wrote:
>Send Logcheck-users mailing list submissions to
> logcheck-users@lists.alioth.debian.org
>
>To subscribe or unsubscribe via the World Wide Web, visit
>
2009 Apr 03
2
how to sort and plot data?
hi,
Previously my email very simple and less information. Let say I have raw
data as below:-
user_id website time
20 google 0930
21 yahoo 0935
20 facebook 1000
25 facebook 1015
61 google 0940
60 yahoo 1050
40 friendster 1115
61 google 1200
40
2012 May 11
2
Cyrus-imapd update from 2.2.12 to 2.3.16
We are trying to move our mail store from a host running cyrus-imapd
2.2.12 under CentOS-4 to one running 2.3.16 under CentOS-6. The
current host is a 32 bit architecture. The new host is 64 bit. We have
followed the update guide found at:
http://www.cyrusimap.org/docs/cyrus-imapd/2.3.16/install-upgrade.php
The steps we followed were:
1. Install cyrus-imapd et al on the new host.
2. Modify
2007 Aug 24
7
How to size an email server to handle 5 million emails per day
I have no idea as to how to size an email server. I was approached by
a customer that wanted a single server with RAID 1 disks to handle
about 5 million emails a day.
In general terms, what parameters should I take into account to size
the hardware specs when the average email is about 10kb, the smalles
email is 2kb and the largest email is about 5meg (with attachment)
thanks,
--
2012 Jul 05
7
proper usage of global variables / node variables / +=
Hello puppet masters, I am cleaning up some puppet modules, using
puppet-lint. The warning I am getting is:
top-scope variable being used without an explicit namespace
I can turn this particular check off, but in doing my research I''m
finding all sorts of messages saying to avoid using +=, to avoid using
variables in the node scope, and to switch to a parameterized class
whenever
2010 Apr 19
1
no logging in auth.log when using wrong ssh keys
I have in the sshd_config the following to disable password authentication
Match Group dummies
PasswordAuthentication no
KbdInteractive no
Normally I use denyhosts to detect incorrect logins, but it seems that
failed sshkey logins are not logged in auth.log
And I really like to have them in order to detect them and use the
denyhosts script.
Looked in the last nightly builds, but it
2006 Aug 30
3
No tcp wrappers, other ideas to help stop brute force attacks?
I'm looking for a way to deny access to dovecot from certain IP
addresses, basically to help prevent brute force attacks on the
server.
Right now I'm using denyhosts which scans /var/log/secure for
authentication failures which then can add an entry to
/etc/hosts.deny, but since dovecot doesn't have tcp wrappers support,
that doesn't do anything.
It doesn't look like I can
2006 May 10
7
mongrel vs. scgi
I''ve liked the scgi runner ever since it came out. I like the way it''scontrolled, the way it''s clusterable, and the fact that it runs onwin32 platforms so easily.
Now it''s May 2006, and the scgi runner hasn''t changed since October,and now we have mongrel. I keep seeing hints of clustering in mongrel,as well. I just downloaded the win32 installer for
2007 Sep 26
4
Intrusion Detection Systems
Situation: We are providing hosting services.
I've grown tired of the various kiddie scripts/dictionary attacks on
various services. The latest has been against vsftpd, on systems that I
can't easily control vs. putting strict limits on ssh. We simply have
too many users entering from too many networks many with dynamic IP
addresses.
Enter.... thinking about LIDS or Log Based
2010 Jan 16
0
Processed: tag ipv6 related packages
Processing commands for control at bugs.debian.org:
> # Tagging bugs related to IPv6 support according to bug title (and checked for false positive)
> # Maintainer, sorry if you consider the tag as not relevant
> tag 561835 +ipv6
Bug #561835 [openjdk-6-jdk] josm: net.ipv6.bindv6only=1 breaks OSM access
Added tag(s) ipv6.
> tag 560837 +ipv6
Bug #560837 {Done: Krzysztof Krzy??aniak
2010 Jan 16
0
Processed: tag ipv6 related packages
Processing commands for control at bugs.debian.org:
> # Tagging bugs related to IPv6 support according to bug title (and checked for false positive)
> # Maintainer, sorry if you consider the tag as not relevant
> tag 561835 +ipv6
Bug #561835 [openjdk-6-jdk] josm: net.ipv6.bindv6only=1 breaks OSM access
Added tag(s) ipv6.
> tag 560837 +ipv6
Bug #560837 {Done: Krzysztof Krzy??aniak
2006 Nov 16
0
Re: IPTables Blocking Brute Forcers
Another good one is
http://denyhosts.sourceforge.net/
It runs as a daemon, and can either ban IP's addresses all together, or
just ban certain services.
-----Original Message-----
From: centos-bounces at centos.org [mailto:centos-bounces at centos.org] On
Behalf Of Brian Marshall
Sent: Thursday, November 16, 2006 9:33 AM
To: CentOS mailing list
Subject: Re: [CentOS] Re: IPTables