Over the last week I’ve seen a *LOT* of ssh dictionary attacks on the new shell server. I’m really not interested in manually updating firewall filter rules every time someone rattles the door knobs, so that’s where DenyHosts comes in.
While it wouldn’t be too much work to script something that will handle this task, DenyHosts is especially interesting to me because of it’s Syncronization Mode. This optional feature allows for my local list of denied hosts to be updated based on the work of other DenyHosts users who have opted to contribute data to the project.
1 response so far ↓
1 Wade // Oct 6, 2007 at 6:08 pm
This has worked quite well so far. My current list of denied hosts has grown to 2,067.
Leave a Comment