Displaying 20 results from an estimated 2000 matches similar to: "denyhosts-2.9-4.el7 not resync'ing"
2009 Aug 26
1
denyhosts configuration
Hello,
I've installed denyhosts on centos 5.3 trying to block automated
attacks on ssh. It appears to be working in that entries are being added to
/etc/hosts.deny yet the daily emails sent from denyhosts show only one ip
being added perday when the total is many more than that. My config is
below, i've gone over it and am not seeing what i missed. Suggestions
welcome.
I was also
2001 Feb 27
4
AllowHosts / DenyHosts
I'd like to see a feature of the commercial ssh in openssh:
AllowHosts xxx.yyy.xxx.yyy *.domain.net
DenyHosts xxx.yyy.xxx.* name.domain.net
This allows or denies connects from certain machines (including wildcard
matching).
Is there any chance for this feature to be included? No, we don't want to
use tcp-wrapper for this.
Bye.
2007 Oct 02
1
denyhosts
Hi,
My denyhosts stop working. How do i check why isnt it working anymore for
me?
Thanks
Oct 2 22:59:17 beyond sshd[15690]: Failed password for root from
221.7.37.142 port 49836 ssh2
Oct 2 22:59:17 beyond sshd[15692]: Received disconnect from 221.7.37.142:
11: Bye Bye
Oct 2 22:59:18 beyond sshd[15701]: pam_unix(sshd:auth): authentication
failure; logname= uid=0 euid=0 tty=ssh ruser=
2007 Mar 13
4
Centos-specific Denyhosts Howto Anyone?
Hi, after reading the docs (no man page) and seeing a few example
howtos, I see none for Centos specifically.
I hereby offer to write this and even host it, and any other wiki-able
howto you want, if you can school me on the first few steps relevant to
how to link up the current rpmforge rpm for RHEL4-64. See, right now,
the one for centos loads into the /usr/share/doc, which is an odd place
2008 Jan 21
5
denyhosts-like app for MySQLd?
Hi all,
?Is there any app like denyhosts[1] but intended for MySQLd service?
We have a mysql ports (3306) opened for remote connections, and
obviously the /var/db/mysql/machine_name.log is full of these kind of
entries:
...........
936012 Connect Access denied for user 'user'@'85.19.95.10' (using
password: YES)
936013 Connect Access denied for user
2006 Jan 09
0
Re: Logcheck-users Digest, Vol 5, Issue 1
The entry is probably not igored because of
the word deny in your path .
You might better set your rule in violation.ignore.d/ directory.
At 13:00 09/01/2006, you wrote:
>Send Logcheck-users mailing list submissions to
> logcheck-users@lists.alioth.debian.org
>
>To subscribe or unsubscribe via the World Wide Web, visit
>
2000 Dec 28
1
COMPATIBILITY: AllowHosts/DenyHosts/SilentDeny not supported
Hi,
here's another feature request that I just found and where I would like
to hear your comments first:
> The above commands are valid ssh-nonfree, but openssh doesn't like them. The
> first two are important for security conscious sites.
Ciao
Christian
--
Debian Developer and Quality Assurance Team Member
1024/26CC7853 31E6 A8CA 68FC 284F 7D16 63EC A9E6
2010 Nov 10
2
need to block user by IP address (tried denyhosts, xinetd, iptables etc)
Hi,
I am kind of restricted to using packaged versions of software due to
company policy, and we have f12 on our mail server with
dovecot-1.2.15-2.fc12.i686 package.
we have recently had some brute force attacks on the pop3 and imapd and
this results in many processes being used for login attempts.
Our dovecot is hosted on a Virtual Private Server which restricts access
to IPTABLEs and also
2009 Jul 09
3
Looking for recommendations for blocking hacking attempts
Hello:
I have been looking into projects that will automatically
restrict hacking attempts on my servers running CentOS 5.
I think the two top contenders are:
DenyHosts - http://denyhosts.sourceforge.net
Fail2ban - http://www.fail2ban.org
>From what I see, DenyHosts only blocks based on failed
SSH attempts whereas Fail2ban blocks failed attempts
for other access as well.
The main benefit
2012 Jul 05
7
proper usage of global variables / node variables / +=
Hello puppet masters, I am cleaning up some puppet modules, using
puppet-lint. The warning I am getting is:
top-scope variable being used without an explicit namespace
I can turn this particular check off, but in doing my research I''m
finding all sorts of messages saying to avoid using +=, to avoid using
variables in the node scope, and to switch to a parameterized class
whenever
2006 Aug 30
3
No tcp wrappers, other ideas to help stop brute force attacks?
I'm looking for a way to deny access to dovecot from certain IP
addresses, basically to help prevent brute force attacks on the
server.
Right now I'm using denyhosts which scans /var/log/secure for
authentication failures which then can add an entry to
/etc/hosts.deny, but since dovecot doesn't have tcp wrappers support,
that doesn't do anything.
It doesn't look like I can
2010 Apr 19
1
no logging in auth.log when using wrong ssh keys
I have in the sshd_config the following to disable password authentication
Match Group dummies
PasswordAuthentication no
KbdInteractive no
Normally I use denyhosts to detect incorrect logins, but it seems that
failed sshkey logins are not logged in auth.log
And I really like to have them in order to detect them and use the
denyhosts script.
Looked in the last nightly builds, but it
2007 Sep 26
4
Intrusion Detection Systems
Situation: We are providing hosting services.
I've grown tired of the various kiddie scripts/dictionary attacks on
various services. The latest has been against vsftpd, on systems that I
can't easily control vs. putting strict limits on ssh. We simply have
too many users entering from too many networks many with dynamic IP
addresses.
Enter.... thinking about LIDS or Log Based
2008 May 20
1
IMAPS error with Dovecot?
I'm using Dovecot to support IMAPS on CentOS4 on port 993. Stock RPMS,
absolutely nothing special done or even anything compiled on the system.
About as usual as usual usually gets.
But, using KMail on my Fedora Linux laptop, I keep getting the following
message: (in part)
"This means that although the resource, Changing the flags of message
imaps://me at
2005 Dec 21
1
Bitrate problem
This is a common problem. Sound cards run at different
clock speeds (but your difference seems kinda high).
What I'd suggest is dropping silence packets once in a
while.
.a
-----Original Message-----
From: speex-dev-bounces@xiph.org
[mailto:speex-dev-bounces@xiph.org] On Behalf Of Shantanu
Gramsci
Sent: Wednesday, December 21, 2005 2:05 PM
To: speex-dev@xiph.org
Subject: [Speex-dev] Bitrate
2013 Jun 02
1
[LLVMdev] running test-suite in cross compilation/execution
Currently, if you are on Mips hardware running linux, you can basically
just run test suite the same way you would run it on an x86 box.
You can just do a "make report TEST=simple" for example.
We also run it on an x86 box, generating MIPS code and then use either
qemu as a simulator or connect to a mips linux box to just execute the
tests.
To do this cross compilation and testing,
2017 Jan 16
0
Centos 7 dhcpd failure to allow a 2nd network over same interal nic
VLANs are your friend, otherwise DHCPD is not going to understand how to properly answer your request for different networks on the same interface.
----- On 14 Jan, 2017, at 11:59, Gregory P. Ennis PoMec at PoMec.net wrote:
| Everyone,
|
| I am trying to set up a second internal network (192.168.0.0/24) and
| have not been able to get dhcp to start when I have the following in my
| dhcpd.conf
2016 Dec 14
0
Problem with yum on CentOS Linux release 7.2.1511 (Core) with 3.10.0-327.36.3.el7.x86_64 kernel
Am 14.12.2016 um 14:44 schrieb Gregory P. Ennis:
> Everyone,
>
> I am at a loss on this problem would appreciate some guidance as to
> where to start to fix it.
>
> I noticed that my home gateway server was not being updated with the
> new kernel and other software, and when I ran yum it aborted with the
> following notices. I tried a yum clean all, but this did not fix
2017 Oct 29
0
Problems with kernel-3.10.0-693.5.2.el7.x86_64
On 10/28/2017 02:55 PM, Gregory P. Ennis wrote:
> Date: Sat, 28 Oct 2017 12:03:51 -0700
>
> On 10/28/2017 11:30 AM, Gregory P. Ennis wrote:
>> On each of these units I am using the video from the mother board
>> which
>> is :
>>
>> Base Board Information
>> ?????????Manufacturer: ASUSTeK COMPUTER INC.
>> ?????????Product Name: B150M-A/M.2
>
2010 Jan 16
0
Processed: tag ipv6 related packages
Processing commands for control at bugs.debian.org:
> # Tagging bugs related to IPv6 support according to bug title (and checked for false positive)
> # Maintainer, sorry if you consider the tag as not relevant
> tag 561835 +ipv6
Bug #561835 [openjdk-6-jdk] josm: net.ipv6.bindv6only=1 breaks OSM access
Added tag(s) ipv6.
> tag 560837 +ipv6
Bug #560837 {Done: Krzysztof Krzy??aniak