Hi, I'm really happy about DenyHosts so far, it has blocked numerous hosts and undoubtedly stopped numerous attacks. However I've noticed it does not seem to handle IPv6 addresses well. For example, I saw these lines in auth.log:
authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2001:610:600:3aa::2 user=*snip* error: PAM: Authentication failure for *snip* from 2001:610:600:3aa::2 authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2001:610:600:3aa::2 user=*snip* error: PAM: Authentication failure for *snip* from 2001:610:600:3aa::2 I got this e-mail from DenyHosts: Added the following hosts to /etc/hosts.deny: 2001 I'm using DenyHosts version 2.6. Sjors ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ _______________________________________________ Denyhosts-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/denyhosts-user
