Difference between revisions of "Denyhosts"
From Nuclear Physics Group Documentation Pages
Jump to navigationJump to search| Line 13: | Line 13: | ||
# Execute "chkconfig --add denyhosts; chkconfig --level 345 denyhosts on | # Execute "chkconfig --add denyhosts; chkconfig --level 345 denyhosts on | ||
# Start it up: service denyhosts start | # Start it up: service denyhosts start | ||
| + | |||
| + | == Faulty Denials == | ||
| + | If you get denied because you're fat-fingered or your automatic ssh login is configured wrong, you'll need to be removed from the denial list. Remove the entry for your computer from /etc/hosts.deny and /var/lib/denyhosts/hosts-restricted. | ||
Revision as of 15:59, 8 June 2009
Intro
We run a python script called "denyhosts.py" on our servers. This script looks at failed login attempts and if there are too many will deny all further access from that system.
Quick Install
The RPM is located at: einstein:/root/Packages/DenyHosts-2.6-python2.4.noarch.rpm
- Copy from einstein the /etc/denyhosts.conf file.
- Copy from einstein the /etc/sysconfig/denyhosts file.
- Copy from einstein the /usr/bin/denyhosts-control file.
- Copy from einstein the /etc/init.d/denyhosts file.
- Execute "chkconfig --add denyhosts; chkconfig --level 345 denyhosts on
- Start it up: service denyhosts start
Faulty Denials
If you get denied because you're fat-fingered or your automatic ssh login is configured wrong, you'll need to be removed from the denial list. Remove the entry for your computer from /etc/hosts.deny and /var/lib/denyhosts/hosts-restricted.
