On 18/08/07, David Liontooth <[EMAIL PROTECTED]> wrote: > Do people have experience blocking other ports than ssh?
Denyhosts isn't blocking the port, it's blocking individual source IPs from the application ... If you have an application that can tell you if some activity is unwanted (e.g. your web server is logging attack traffic like GET requests to "../cmd.exe"), I'd guess that it would be possible to ask Denyhosts to look at those log patterns and react to them. The reaction itself would have to be different than just using tcpwrappers, I don't think most Apaches pay attention to tcpwrappers info, but you could throw a custom rule into your firewall easily enough ... -jim ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ _______________________________________________ Denyhosts-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/denyhosts-user
