On Thu, 4 Feb 2016, Tom Rivers wrote:
On 2/4/2016 4:07 PM, ven...@billoblog.com wrote:
Is there something like denyhosts for sasl attacks? I'm getting tired
of stuff like this:
Jan 31 04:52:38 hope saslauthd[1333]: do_auth : auth failure:
[user=abby] [service=smtp] [
On 2/4/2016 4:07 PM, ven...@billoblog.com wrote:
Is there something like denyhosts for sasl attacks? I'm getting tired
of stuff like this:
Jan 31 04:52:38 hope saslauthd[1333]: do_auth : auth failure:
[user=abby] [service=smtp] [realm=billoblog.com] [mech=pam] [reason=PAM
auth
Is there something like denyhosts for sasl attacks? I'm getting tired
of stuff like this:
Jan 31 04:52:38 hope saslauthd[1333]: do_auth : auth failure:
[user=abby] [service=smtp] [realm=billoblog.com] [mech=pam] [reason=PAM
auth error]
Jan 31 04:57:35 hope saslauthd[1335]: do
your quick response.
Looked at fail2ban per your recommendation. It does monitor more ports
than denyhosts. So I looked at how many different ports have been
attacked on my computer, a total of over 4200.
Are these additional ports of no consequence? Or is it still good to
lock the requesting ip ad
l.com]
To: users@lists.fedoraproject.org
Sent: Mon, 06 Jul 2015 22:35:51 -0500
Subject: iptables with logging vs denyhosts
I have been using denyhosts for almost a year. To date I have only
prevented one person logging in and that is ME ( I used the wrong login
name).
Also, I know of no successful
I have been using denyhosts for almost a year. To date I have only
prevented one person logging in and that is ME ( I used the wrong login
name).
Also, I know of no successful break-ins.
My iptables is as follows:
-P INPUT DROP
-P FORWARD DROP
-P OUTPUT ACCEPT
-N block
-A INPUT -j block
-A
efined, and in a way inconsistent with other
> > > uses in Linux such as 'root jail'.
> > > In the end I just had to add a simple jail.local file, but it took a
> > > while to discover that.
> > > Denyhosts was much easier IIRC.
> > Once you're
27;.
> > In the end I just had to add a simple jail.local file, but it took a
> > while to discover that.
> > Denyhosts was much easier IIRC.
> Once you're done, make the instructions in the form of a examples,
> put it in a patch and send upstream. If upstream doesn&#
On 29.03.2015 18:53, Patrick O'Callaghan wrote:
> On Sat, 2015-03-28 at 23:22 -0400, Rahul Sundaram wrote:
>> Hi
>>
>> On Sat, Mar 28, 2015 at 5:14 PM, Joe Zeff wrote:
>>
>>> If denyhosts needs rsyslogd, shouldn't it be a dependency?
>>
>
On Sat, 2015-03-28 at 23:22 -0400, Rahul Sundaram wrote:
> Hi
>
> On Sat, Mar 28, 2015 at 5:14 PM, Joe Zeff wrote:
>
> > If denyhosts needs rsyslogd, shouldn't it be a dependency?
>
>
> It doesn't need rsyslogd specifically. A virtual dependency on syslo
Hi
On Sat, Mar 28, 2015 at 5:14 PM, Joe Zeff wrote:
> If denyhosts needs rsyslogd, shouldn't it be a dependency?
It doesn't need rsyslogd specifically. A virtual dependency on syslog with
multiple providers including rsyslogd and syslog-ng might be a possible
solution. Howe
On 03/28/2015 02:01 PM, Patrick O'Callaghan wrote:
On Sat, 2015-03-28 at 13:47 -0400, Neal Becker wrote:
>I want to install denyhosts, but I currently am using stock f21 install
>(without rsyslogd). Will this work?
>
Just install rsyslog with yum. It will run via systemd and d
On Sat, 2015-03-28 at 13:47 -0400, Neal Becker wrote:
> I want to install denyhosts, but I currently am using stock f21 install
> (without rsyslogd). Will this work?
Just install rsyslog with yum. It will run via systemd and denyhosts
works fine.
poc
--
users mailing list
On Sat, Mar 28, 2015 at 01:47:25PM -0400, Neal Becker wrote:
> I want to install denyhosts, but I currently am using stock f21 install
> (without rsyslogd). Will this work?
I don't think so, no. However, you might look at switching to fail2ban,
which can.
--
Matthew Miller
Fed
I want to install denyhosts, but I currently am using stock f21 install
(without rsyslogd). Will this work?
--
Those who fail to understand recursion are doomed to repeat it
--
users mailing list
users@lists.fedoraproject.org
To unsubscribe or change subscription options:
https
On Thu, Mar 14, 2013 at 2:49 PM, Matthew J. Roth wrote:
> Marvin Kosmal wrote:
>>
>> Did I type that..
>>
>> It is /var/log/auth.log
>
> Marvin,
>
> Yes, but if it was just a typo and denyhosts is working now then you're all
> set.
>
Marvin Kosmal wrote:
>
> Did I type that..
>
> It is /var/log/auth.log
Marvin,
Yes, but if it was just a typo and denyhosts is working now then you're all set.
Regards,
Matthew Roth
InterMedia Marketing Solutions
Software Engineer and Systems Developer
--
users m
On Thu, Mar 14, 2013 at 11:27 AM, Matthew J. Roth wrote:
> Marvin Kosmal wrote:
>>
>> Looks like the answer is user configuration error..
>>
>> Thanks for all the great help...
>
> Marvin,
>
> Assuming that my post solved your problem, you should still be asking yourself
> why logging is being don
Marvin Kosmal wrote:
>
> Looks like the answer is user configuration error..
>
> Thanks for all the great help...
Marvin,
Assuming that my post solved your problem, you should still be asking yourself
why logging is being done to '/etc/log/auth.log'? It would typically be
'/var/log/auth.log'.
On Thu, Mar 14, 2013 at 10:23 AM, Joe Zeff wrote:
> On 03/14/2013 03:16 AM, Reindl Harald wrote:
>>
>> so the next time before you waste time of others
>> state in the opening post that you are running
>> a different distribution and somebody which may
>> have ubuntu expierience maybe could even h
On Thu, Mar 14, 2013 at 8:44 AM, Ed Greshko wrote:
> On 03/14/13 22:28, Matthew J. Roth wrote:
>> You have denyhosts configured to monitor '/var/log/messages' but failed login
>> attempts are being logged to '/etc/log/auth.log'.
>>
>> In &#x
On 03/14/2013 03:16 AM, Reindl Harald wrote:
so the next time before you waste time of others
state in the opening post that you are running
a different distribution and somebody which may
have ubuntu expierience maybe could even help
you but if we all look into glassballs*grrr*
In this I agree
On 03/14/13 22:28, Matthew J. Roth wrote:
> You have denyhosts configured to monitor '/var/log/messages' but failed login
> attempts are being logged to '/etc/log/auth.log'.
>
> In '/etc/denyhosts.conf' (or whatever file is used to configure
me reason.
TIA
Marvin
On Wed, 13 Mar 2013, Marvin Kosmal wrote:
On Tue, Mar 12, 2013 at 8:29 PM, Marvin Kosmal wrote:
Hi
Is anyone running Denyhosts?
I have it installed.. It says it is running but, nothing is happening..
TIA
Marvin
This is from my log file
Mar 13 21:05:01 - den
On Thu, Mar 14, 2013 at 7:28 AM, Matthew J. Roth wrote:
> Marvin Kosmal wrote:
>>
>> This is from my log file
>> ...
>> Mar 13 21:05:01 - denyhosts : INFO monitoring log: /var/log/messages
>> ...
>>
>> What do you have in /etc/log/auth.log
>
Marvin Kosmal wrote:
>
> This is from my log file
> ...
> Mar 13 21:05:01 - denyhosts : INFO monitoring log: /var/log/messages
> ...
>
> What do you have in /etc/log/auth.log
>
> I have this kind of stuff in mine
>
> Mar 13 09:27:58 kosmal sshd[3123
rtial log file below.. I believe it is
getting the lock file. I also think the daemon is starting and then
exiting for some reason.
TIA
Marvin
>
> On Wed, 13 Mar 2013, Marvin Kosmal wrote:
>
>> On Tue, Mar 12, 2013 at 8:29 PM, Marvin Kosmal wrote:
>>>
>>> H
Are you sure you don't have a lock file that's not getting deleted? I'd
check that next.
billo
On Wed, 13 Mar 2013, Marvin Kosmal wrote:
On Tue, Mar 12, 2013 at 8:29 PM, Marvin Kosmal wrote:
Hi
Is anyone running Denyhosts?
I have it installed.. It says it is running
On Wed, 13 Mar 2013, Marvin Kosmal wrote:
Hi
Thanks to everyone who replied..
I am running denyhosts on a machine that is remote and I do all my
work over ssh. The owner of the remote machine just upgrade the
machine I needed to reinstall everything.
When I say denyhosts is not working
Am 14.03.2013 07:11, schrieb Marvin Kosmal:
> On Wed, Mar 13, 2013 at 11:05 PM, Ed Greshko wrote:
>> On 03/14/13 14:03, Marvin Kosmal wrote:
>>> Yes, I am running Ubuntu 12.04
>>>
>>> I am running 2.6
>>
>> Ubuntu? Maybe their list will be more
;>>> Yes, I am running Ubuntu 12.04
>>>>>
>>>>>
>>>>>
>>>>> I am running 2.6
>>>> Ubuntu? Maybe their list will be more helpful?
>>>>
>>> I am thinking this is a denyhosts problem..
>>>
>>> I was v
t;>>>
>>>> I am running 2.6
>>> Ubuntu? Maybe their list will be more helpful?
>>>
>> I am thinking this is a denyhosts problem..
>>
>> I was viewing this as a Linux problem and was hoping to get hit with
>> the clue stick..!! hehe
>
On 03/14/13 14:11, Marvin Kosmal wrote:
> On Wed, Mar 13, 2013 at 11:05 PM, Ed Greshko wrote:
>> On 03/14/13 14:03, Marvin Kosmal wrote:
>>> Yes, I am running Ubuntu 12.04
>>>
>>>
>>>
>>> I am running 2.6
>> Ubuntu? Maybe their list
On Wed, Mar 13, 2013 at 11:05 PM, Ed Greshko wrote:
> On 03/14/13 14:03, Marvin Kosmal wrote:
>> Yes, I am running Ubuntu 12.04
>>
>>
>>
>> I am running 2.6
>
> Ubuntu? Maybe their list will be more helpful?
>
I am thinking this is a denyhosts proble
On 03/14/13 14:03, Marvin Kosmal wrote:
> Yes, I am running Ubuntu 12.04
>
>
>
> I am running 2.6
Ubuntu? Maybe their list will be more helpful?
--
From now on, at least during winter time, Im going to blame all spelling an
grammar erros on the cat sitting on my chest every time I sit down at
>>> Hi
>>>>>
>>>>> Is anyone running Denyhosts?
>>>>>
>>>>> I have it installed.. It says it is running but, nothing is happening..
>>>>>
>>>>> TIA
>>>>>
>>>>> Marvin
>>
On 03/14/13 13:33, Ed Greshko wrote:
> And, after causing login failures The line
>
> sshd: 192.168.0.194
>
> is added to /etc/hosts.deny
In addition, after this line is added all attempts to ssh into that host from
192.168.0.194 were met with immediate:
[egreshko@f18kde ~]$ ssh f18x
ssh_e
On 03/14/13 13:03, Marvin Kosmal wrote:
> On Wed, Mar 13, 2013 at 9:46 PM, Ed Greshko wrote:
>> On 03/14/13 12:33, Marvin Kosmal wrote:
>>> On Tue, Mar 12, 2013 at 8:29 PM, Marvin Kosmal wrote:
>>>> Hi
>>>>
>>>> Is anyone running Denyhosts?
On Wed, Mar 13, 2013 at 9:46 PM, Ed Greshko wrote:
> On 03/14/13 12:33, Marvin Kosmal wrote:
>> On Tue, Mar 12, 2013 at 8:29 PM, Marvin Kosmal wrote:
>>> Hi
>>>
>>> Is anyone running Denyhosts?
>>>
>>> I have it installed.. It says
On 03/14/13 12:33, Marvin Kosmal wrote:
> On Tue, Mar 12, 2013 at 8:29 PM, Marvin Kosmal wrote:
>> Hi
>>
>> Is anyone running Denyhosts?
>>
>> I have it installed.. It says it is running but, nothing is happening..
>>
>> TIA
>>
>> Marv
On Tue, Mar 12, 2013 at 8:29 PM, Marvin Kosmal wrote:
> Hi
>
> Is anyone running Denyhosts?
>
> I have it installed.. It says it is running but, nothing is happening..
>
> TIA
>
> Marvin
This is from my log file
Mar 13 21:05:01 - denyhosts : INFO restrict
Reindl Harald wrote:
>
>> since you do not understand "cat" and post i am done
>> in this thread - if you have problems post your
>> config, but now post it to whomever, my denyhosts
>> whitelists as long it was useful for me worked
>> in /var/lib/denyhosts
t; billo
>
>
>
>
> On Wed, 13 Mar 2013, Reindl Harald wrote:
>
>> since you do not understand "cat" and post i am done
>> in this thread - if you have problems post your
>> config, but now post it to whomever, my denyhosts
>> whitelists as long it wa
have problems post your
config, but now post it to whomever, my denyhosts
whitelists as long it was useful for me worked
in /var/lib/denyhosts/allowed-hosts
Am 13.03.2013 16:28, schrieb Bill Oliver:
/var/lib/denyhosts/allowed-hosts
On Wed, 13 Mar 2013, Reindl Harald wrote:
Am 13.03.2013 16
On 13 Mar 2013, at 15:52, Reindl Harald wrote:
> since you do not understand "cat" and post i am done
> in this thread - if you have problems post your
> config, but now post it to whomever, my denyhosts
> whitelists as long it was useful for me worked
> in /var/li
since you do not understand "cat" and post i am done
in this thread - if you have problems post your
config, but now post it to whomever, my denyhosts
whitelists as long it was useful for me worked
in /var/lib/denyhosts/allowed-hosts
Am 13.03.2013 16:28, schrieb Bill Oliver:
> /var/
/var/lib/denyhosts/allowed-hosts
On Wed, 13 Mar 2013, Reindl Harald wrote:
Am 13.03.2013 16:05, schrieb Bill Oliver:
Dude, can you try to be a little more condescending? I didn't catch it the
first five times. Yeah, I read the
manuals. Yeah, I have the machine in my white list
script to use rsync to
>>> backup some directories on a virtual
>>> machine to a local machine. Every time that happens, denyhosts adds the
>>> virtual machine to the hosts.deny list on
>>> the local machine. I don't get it.
>>
>> is it really so diffic
03.2013 14:13, schrieb Bill Oliver:
The only problem I have with it is that I have a script to use rsync to backup
some directories on a virtual
machine to a local machine. Every time that happens, denyhosts adds the
virtual machine to the hosts.deny list on
the local machine. I don't
Am 13.03.2013 14:13, schrieb Bill Oliver:
> The only problem I have with it is that I have a script to use rsync to
> backup some directories on a virtual
> machine to a local machine. Every time that happens, denyhosts adds the
> virtual machine to the hosts.deny list on
> th
On Wed, Mar 13, 2013 at 6:13 AM, Bill Oliver wrote:
> Yeah, I run it. It works.
>
> The only problem I have with it is that I have a script to use rsync to
> backup some directories on a virtual machine to a local machine. Every time
> that happens, denyhosts adds the virtual
Yeah, I run it. It works.
The only problem I have with it is that I have a script to use rsync to backup
some directories on a virtual machine to a local machine. Every time that
happens, denyhosts adds the virtual machine to the hosts.deny list on the local
machine. I don't get it
Am 13.03.2013 10:33, schrieb Georgios Petasis:
> Στις 13/3/2013 5:29 πμ, ο/η Marvin Kosmal έγραψε:
>> Hi
>>
>> Is anyone running Denyhosts?
>>
>> I have it installed.. It says it is running but, nothing is happening..
what exactly do you want to happen?
>
Στις 13/3/2013 5:29 πμ, ο/η Marvin Kosmal έγραψε:
Hi
Is anyone running Denyhosts?
I have it installed.. It says it is running but, nothing is happening..
TIA
Marvin
Yes, I am running it, and it works.
George
--
users mailing list
users@lists.fedoraproject.org
To unsubscribe or change
Hi
Is anyone running Denyhosts?
I have it installed.. It says it is running but, nothing is happening..
TIA
Marvin
--
users mailing list
users@lists.fedoraproject.org
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http
On 05/31/2011 09:21 AM, Daniel J Walsh wrote:
> On 05/29/2011 08:02 AM, Kevin H. Hobbs wrote:
>> sealert says:
>>
>> /var/lock default label should be var_lock_t.
> restorecon -R -v /var
>
Mmm that did it. denyhosts now starts.
What made me doubt the advice sealert
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 05/29/2011 08:02 AM, Kevin H. Hobbs wrote:
> I tried to install and enable denyhosts on a fresh Fedora 15 install.
>
> I did systemctl enable denyhosts.service. systemctl ran chkconfig.
>
> When I started the service I got t
On 29/05/11 13:02, Kevin H. Hobbs wrote:
> I tried to install and enable denyhosts on a fresh Fedora 15 install.
>
> I did systemctl enable denyhosts.service. systemctl ran chkconfig.
>
> When I started the service I got this in /var/log/messages:
>
>
The alert tells you h
I tried to install and enable denyhosts on a fresh Fedora 15 install.
I did systemctl enable denyhosts.service. systemctl ran chkconfig.
When I started the service I got this in /var/log/messages:
May 29 07:49:33 murron setroubleshoot: SELinux is preventing
/usr/bin/python from read access on
59 matches
Mail list logo
