denyHosts
Great little utility daemon called denyHosts. Started testing it on a unallocated server this last week by exposing the IP address to the script kiddies. So far it's shot every single one of them down and even blocked 2 before they had a chance. It's got 2 or 3 parts to it. the primary mechanism scans the sshd log every hour and bans IP addresses of anyone who failed to login 5x in a row, second and best part is that it uses a black list to ban IP addresses, and finally it has a smtp mechanism to email the sysop daily reports. Combine this with good practices ( root@ cannot be logged into directly, Iptables, hardening net services, and a minimum 12-14 scrambled PW) and you got a decently secure box.
denyhosts.net
Also it's free, I like free a lot.
Update:
Someone (no need pointing fingers) commented:
cool, but let me be the first to say SPAM
This is my reply:
Yeah, I'd also like to know how this is spam. Spam is usually involving 1 or 2 parties. The marketer/spammer and the company with the product. I am not being paid by denyhosts(who is a single/unemployed guy) or being given anything for endorsing it. Further more if you read any of my posts, it's pretty obvious that I am no where near the experience level needed to write something like this unless I devoted more then 80% of my time to it.
Really the only thing DenyHosts gets out of this is my respect. Plus you obviously didn't even bother to look at the website. There are no advertisements or contracts that would suggest he's gettiny money and is very likely losing money by providing the extended services of denyhosts. More then likely he wrote denyHosts to promote his expertise in the hopes of finding an employeer. As for you, I can understand the paranoia/frustration about spammers (a month ago some ass erased a whole slew of wiki entries for ruby) but could you at least do your research before jumping to conclusions?
denyhosts.net
Also it's free, I like free a lot.
Update:
Someone (no need pointing fingers) commented:
cool, but let me be the first to say SPAM
This is my reply:
Yeah, I'd also like to know how this is spam. Spam is usually involving 1 or 2 parties. The marketer/spammer and the company with the product. I am not being paid by denyhosts(who is a single/unemployed guy) or being given anything for endorsing it. Further more if you read any of my posts, it's pretty obvious that I am no where near the experience level needed to write something like this unless I devoted more then 80% of my time to it.
Really the only thing DenyHosts gets out of this is my respect. Plus you obviously didn't even bother to look at the website. There are no advertisements or contracts that would suggest he's gettiny money and is very likely losing money by providing the extended services of denyhosts. More then likely he wrote denyHosts to promote his expertise in the hopes of finding an employeer. As for you, I can understand the paranoia/frustration about spammers (a month ago some ass erased a whole slew of wiki entries for ruby) but could you at least do your research before jumping to conclusions?
