Mark wrote: > Hi Ray, > > You were on the right track, but you don't need to go to all that trouble. > Just add the folling line to denyhost.cfg to add a custom pattern for ftp or > <.. snip ..> > I needed to this for the same reason you do--tens of thousands of dictionary > names from hackers over ftp every night. > > Good luck! > > Mark > > Thanks, I got it working and it's denying those *%#&!! attackers. My daily log file is now about 90% smaller now that those dictionary FTP attacks are being denied.
My next question is about the DenyHosts Report. I was wondering if there was any way to include more information in the notification email. I'd love to know which rule triggered the deny listing, what they were attacking (ssh, ftp, etc), maybe even which user names they were trying to use. If I understand how these rules work, they are gathering this information. It'd be nice to see it. Any ideas? -Ray ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Denyhosts-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/denyhosts-user
