Dan Denton wrote: > Is there a way to tell how far back in the log that the denyhosts daemon > checks for failed logins? If so, is there a way to change that parameter? > I.E., how many attempts in what time frame constitute an attack?
DenyHosts doesn't go back normally, it keeps a state to know what was the last part of the log it checked. I said "normally" because with a parameter you can make it check the whole log... the parameter is --ignore (which you could see by running `denyhosts.py --help`). > The only thing close I can find in the config is " AGE_RESET_VALID=5d", but > if I'm reading it right that's the inactivity counter between attempted > attacks for resetting the attack count to zero. Thanks again... You are correct, and changing that value will define the "window" in time in which failures are counted. Take into account that there are really 2 values for the same thing but different priorities, AGE_RESET_ROOT is used for those accounts you defined as having a higher level of security. There's a whole group of options, like the config file says: "for complete details refer to: http://denyhosts.sourceforge.net/faq.html#timespec " -- René Berber ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ _______________________________________________ Denyhosts-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/denyhosts-user
