Hi James, Sounds like a tcpwrappers problem. DenyHosts doesn't use /etc/hosts.allow for anything. It's up to your tcpwrappers implementation to honor it.
DenyHosts uses it's WORK_DIR/allowed-hosts file to filter out valid IP's (that just happened to mis-enter passwords) from being blocked. I'd be interested to see your /var/log/denyhosts file. Can you remove it. Start DenyHosts in debug mode (--debug) and then login from your good address that gets blocked. If it blocks you, send me the logfile, it should hopefully indicate the issue. Also, I'm not sure what your secure.log looks like so if you can provide a sample that will indicate whether the builtin regexes will work (they should considering I have it running on FC4 and FC5). Regards, Phil On Wed, 26 Jul 2006, James Butler wrote: > Fedora Core 4, Denyhosts v.2.4 and v.2.5 (same problem, both versions) > > I've got Denyhosts installed with no problem, however I can't get the program > to allow my IP address. > > When I login either via SSH or Webmin, as soon as Denyhosts runs its next > cycle, my IP is added to hosts.deny. Fortunately, I am logged in, so I edit > hosts.deny and remove my IP so I can get back in later, but it's seriously > irritating. > > Except for the one file noted in the next paragraph, there is no mention of > my IP in any of the files in the WORK_DIR. > > I have made the allowed-hosts file in /usr/share/denyhosts/data (the > WORK_DIR) and inserted my IP in it. Even after restarting, this has no effect. > > I have added my IP (ALL: 123.123.123.123) to hosts.allow, but this is also > ineffective. > > I have modified the SUCCESSFUL_ENTRY_REGEX both in the > /usr/lib/python2.4/site-packaes/DenyHosts/regex.py file and have overridden > that variable by including a reference to it in > /usr/share/denyhosts/denyhosts.cfg, with no effect. (I modified that regex > because it was only set to look for "Accepted", which Webmin does not use, > and apparently /var/log/secure's note about successfully logging out was also > triggering denyhosts to add my IP to hosts.deny.) > > Here's the truly odd part ... I have another Fedora Core 4 server on which I > installed Denyhosts 2.4 (from source tarball) at the same time as I first > installed it on the problem system (both dedicated boxes, freshly > provisioned), and that system doesn't do anything with my IP, either via SSH > or Webmin. It successfully adds attacking IPs to hosts.deny, but it ignores > mine, which is just what I want. > > So I don't know if this is a problem with Denyhosts not including the > allowed-hosts file, not reading hosts.allow, or maybe it's a tcpwrappers > issue or what ... I'm running out of ideas. > > Today, I removed all Denyhosts v.2.4 files from the problem system and > installed v.2.5 from the source RPM file provided by the program's author, > and there is absolutely no change. Same problem. > > I would really appreciate any thoughts. TIA. > > > ------------------------------------------------------------------------- > Take Surveys. Earn Cash. Influence the Future of IT > Join SourceForge.net's Techsay panel and you'll get the chance to share your > opinions on IT & business topics through brief surveys -- and earn cash > http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV > _______________________________________________ > Denyhosts-user mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/denyhosts-user > -- Regards, Phil Schwartz - http://www.phil-schwartz.com Open Source Projects: - DenyHosts: http://www.denyhosts.net - Kodos: http://kodos.sourceforge.net - ReleaseForge: http://releaseforge.sourceforge.net - Scratchy: http://scratchy.sourceforge.net - FAQtor: http://faqtor.sourceforge.net ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys -- and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Denyhosts-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/denyhosts-user
