Yeah, I've written a number of very long, very gruelling scripts that ultimately... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

bmelton on March 12, 2011 | parent | context | favorite | on: Securing an Ubuntu Server

Yeah, I've written a number of very long, very gruelling scripts that ultimately were all replaced by denyhosts.

On the flip side, denyhosts only works on sshd (to my knowledge) -- so the scripts I wrote to monitor tornado log files and block all the random attack vectors is still worth having around.

mkelly on March 13, 2011 [–]

denyhosts is configurable enough that I see no reason why it couldn't also work for other services. You'd probably have to hand-configure it (with a regex for each log type), though.

That said, I've only ever used it for ssh.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact