Re: denyhosts, fail2ban, or something else?

2012-11-29 Thread Damien Fleuriot
On 27 November 2012 23:25, Aleksandr Miroslav wrote: > Finally got sick of seeing tons of ssh break-in attempts in my logs. Am > considering using denyhosts, or fail2ban. Anyone have any experience > with these? > > I'm already using the AllowUsers facility of ssh to only allow specific > users in

Re: denyhosts, fail2ban, or something else?

2012-11-28 Thread Arthur Chance
On 11/27/12 22:25, Aleksandr Miroslav wrote: Finally got sick of seeing tons of ssh break-in attempts in my logs. Am considering using denyhosts, or fail2ban. Anyone have any experience with these? I'm already using the AllowUsers facility of ssh to only allow specific users in, so I'm not overl

Re: denyhosts, fail2ban, or something else?

2012-11-27 Thread Robert Bonomi
> From owner-freebsd-questi...@freebsd.org Tue Nov 27 16:26:46 2012 > Date: Tue, 27 Nov 2012 17:25:08 -0500 > Subject: denyhosts, fail2ban, or something else? > From: Aleksandr Miroslav > To: freebsd-questions@freebsd.org > > Finally got sick of seeing tons of ssh break-in attempts in my logs. Am

Re: denyhosts, fail2ban, or something else?

2012-11-27 Thread Frank Reppin
Hi, On 27.11.2012 23:25, Aleksandr Miroslav wrote: [...] Finally got sick of seeing tons of ssh break-in attempts in my logs. Am considering using denyhosts, or fail2ban. Anyone have any experience with these? I'm already using the AllowUsers facility of ssh to only allow specific users in, so

Re: denyhosts, fail2ban, or something else?

2012-11-27 Thread Lena
> Finally got sick of seeing tons of ssh break-in attempts in my logs. I invoke sshd from inetd with limit 3 connections/min in /etc/inetd.conf: ssh stream tcp nowait/0/3 root/usr/sbin/sshd sshd -i -4 ___ freebsd-questions@freebsd.or

Re: denyhosts, fail2ban, or something else?

2012-11-27 Thread Josh Beard
On Tue, Nov 27, 2012 at 3:25 PM, Aleksandr Miroslav wrote: > Finally got sick of seeing tons of ssh break-in attempts in my logs. Am > considering using denyhosts, or fail2ban. Anyone have any experience > with these? > > I'm already using the AllowUsers facility of ssh to only allow specific > us

Re: denyhosts and the threshold level

2007-06-18 Thread Zbigniew Szalbot
Hello, Norberto Meijome wrote: > On Mon, 18 Jun 2007 07:51:23 +0200 > Zbigniew Szalbot <[EMAIL PROTECTED]> wrote: > >> Failed password for root from 218.9.127.236 port 47414 ssh2 Jun 17 >> 19:56:00 lists sshd[8079]: >> Failed password for root from 218.9.127.236 port 47566 ssh2 Jun 17 >> 19:56:03

Re: denyhosts and the threshold level

2007-06-18 Thread Norberto Meijome
On Mon, 18 Jun 2007 07:51:23 +0200 Zbigniew Szalbot <[EMAIL PROTECTED]> wrote: > Failed password for root from 218.9.127.236 port 47414 ssh2 Jun 17 > 19:56:00 lists sshd[8079]: > Failed password for root from 218.9.127.236 port 47566 ssh2 Jun 17 > 19:56:03 lists sshd[8081]: Of course, you have

Re: denyhosts and the threshold level

2007-06-17 Thread Beech Rintoul
On Sunday 17 June 2007, Zbigniew Szalbot said: > Hello, > > I have denyhosts set with the following options: > > DENY_THRESHOLD_INVALID = 3 > DENY_THRESHOLD_VALID = 3 > > In my understanding this should block all ssh login attempts from a > host which fails to provide correct login credentials 3 ti

Re: denyhosts problems

2006-09-28 Thread Robin Becker
Daniel Bye wrote: On Thu, Sep 28, 2006 at 05:22:43PM +0100, Robin Becker wrote: I'm trying to get denyhosts-2.5 to work in 6.0 and have inserted a line in hosts.allow ALL: xxx.myoffice.com : allow sshd: /etc/hosts.deniedssh : deny ALL: ALL : allow but am finding that this causes my home ip t

Re: denyhosts problems

2006-09-28 Thread Daniel Bye
On Thu, Sep 28, 2006 at 05:22:43PM +0100, Robin Becker wrote: > I'm trying to get denyhosts-2.5 to work in 6.0 and have inserted a line in > hosts.allow > > > ALL: xxx.myoffice.com : allow > sshd: /etc/hosts.deniedssh : deny > ALL: ALL : allow > > but am finding that this causes my home ip to b

Re: DenyHosts Startup Script

2006-04-25 Thread Daniel A.
On 4/25/06, David Stanford <[EMAIL PROTECTED]> wrote: > Hello all, > > So I've recently just installed > DenyHostson my FreeBSD > 6.1-RC box and can't, for the life of me, get this daemon to start on boot. > I installed version 2.4b using the setup.py script. I'e

Re: DenyHosts Startup Script

2006-04-25 Thread David Stanford
Daniel, Much thanks, you're the man! Actually, I initially installed it from ports (ver. 2.2) and was having the same problem. I then went onto the DenyHosts website and read the changelog for 2.3 which stated "daemon-control-dist should now behave correctly on FreeBSD systems". Of course this sti

Re: DenyHosts Startup Script

2006-04-25 Thread Beech Rintoul
On Monday 24 April 2006 19:29, David Stanford wrote: > Hello all, > > So I've recently just installed > DenyHostson my FreeBSD > 6.1-RC box and can't, for the life of me, get this daemon to start on boot. > I installed version 2.4b using the setup.py script. I'e m

Re: denyhosts

2006-02-22 Thread Chuck Swiger
Robin Becker wrote: > I'm trying out the denyhosts port; it starts up and performs as expected, > but it won't recognize a running instance as this python if test fails. > Is there a more freebsd way for python to find out if a given process is > running? > > if os.access(os.path.join("/proc",

Re: denyhosts

2006-02-22 Thread Alec Berryman
Robin Becker on 2006-02-22 10:08:14 +: > I'm trying out the denyhosts port; it starts up and performs as expected, > but it won't recognize a running instance as this python if test fails. Is > there a more freebsd way for python to find out if a given process is > running? > > if os.ac