From owner-freebsd-questions@FreeBSD.ORG  Sun Mar 19 15:00:22 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id EF36D16A41F
	for <freebsd-questions@freebsd.org>;
	Sun, 19 Mar 2006 15:00:22 +0000 (UTC)
	(envelope-from chris@chrismaness.com)
Received: from ns1.internetinsite.com (ns1.internetinsite.com [208.179.97.2])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 7B75A43D45
	for <freebsd-questions@freebsd.org>;
	Sun, 19 Mar 2006 15:00:22 +0000 (GMT)
	(envelope-from chris@chrismaness.com)
Received: from [71.83.198.191] (71-83-198-191.dhcp.rvsd.ca.charter.com
	[71.83.198.191])
	by ns1.internetinsite.com (8.13.4/8.13.4) with ESMTP id k2JF0LUg008440; 
	Sun, 19 Mar 2006 07:00:22 -0800 (PST)
	(envelope-from chris@chrismaness.com)
Message-ID: <441D71FE.2070003@chrismaness.com>
Date: Sun, 19 Mar 2006 07:00:14 -0800
From: Chris Maness <chris@chrismaness.com>
User-Agent: Thunderbird 1.5 (Windows/20051201)
MIME-Version: 1.0
To: "Daniel A." <ldrada@gmail.com>, freebsd-questions@freebsd.org
References: <441CA1F9.20301@chrismaness.com>
	<5ceb5d550603190128q5f3e46c3o84e4b45236df0883@mail.gmail.com>
In-Reply-To: <5ceb5d550603190128q5f3e46c3o84e4b45236df0883@mail.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: 
Subject: Re: hosts.allow ?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 19 Mar 2006 15:00:23 -0000

Daniel A. wrote:
> On 3/19/06, Chris Maness <chris@chrismaness.com> wrote:
>   
>> My denyhost script is doing it's job by adding:
>>
>> sshd: 62.149.232.105 : deny
>>
>> to the hosts.allow file, but I see that this host is still making
>> attempts to get into my box.  Is there a cron job or something that has
>> to re-read the hosts.allow file before it the IP will be blocked?
>> _______________________________________________
>> freebsd-questions@freebsd.org mailing list
>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
>> To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"
>>
>>     
> Offtopic, but
> How did you set up denyhosts? Daemon? Cron?
>
>   
p.s.

OK, I was able to get to work by just starting out with a blank 
hosts.allow.  Everything is allowed by default, so when denyhosts adds a 
deny line to the file, it will deny access to that host.

Also, sshd can't be started in rc.conf, it has to be started in 
inetd.conf.  Make sure you do a /etc/rc.d/inetd restart after you make 
changes.