Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 21 Dec 2006 06:32:11 -0600
From:      Derek Ragona <derek@computinginnovations.com>
To:        David Banning <david+dated+1167109465.e841d1@skytracker.ca>, questions@freebsd.org
Subject:   Re: question on hosts.allow
Message-ID:  <6.0.0.22.2.20061221062945.0257cbb8@mail.computinginnovations.com>
In-Reply-To: <20061221050424.GA94983@skytracker.ca>
References:  <20061221050424.GA94983@skytracker.ca>
next in thread | previous in thread | raw e-mail | index | archive | help 
I can't say if it will read your other file, I use explicit lines such as:
sshd:  192.168.1.20 : allow
sshd:  82.165.182.220 : deny
sshd: ALL: DENY

This allows ONLY access from good known IP's.  You will still see the 
attempts in the security logs.

         -Derek


At 11:04 PM 12/20/2006, David Banning wrote:
>I have been running denyhosts to stop attacks on my ssh port.
>
>The attacks continue after protection is put in place.
>
>Here is what I have in the tail of my /etc/hosts.allow
>as per the installation instructions;
>-------------------------
>...<snip>
>sshd : /etc/hosts.deniedssh : deny
>sshd : ALL : allow
>-------------------------
>
>and in /etc/hosts.deniedssh I have;
>
>-------------------------
>sshd: 82.165.182.220 : deny
>sshd: 200.52.90.100 : deny
>-------------------------
>
>but I am still receiving attacks from the last IP address. So I am wondering
>what program actually -reads- hosts.allow
>
>May be it has to be reset, or restarted?
>_______________________________________________
>freebsd-questions@freebsd.org mailing list
>http://lists.freebsd.org/mailman/listinfo/freebsd-questions
>To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"
>
>--
>This message has been scanned for viruses and
>dangerous content by MailScanner, and is
>believed to be clean.
>MailScanner thanks transtec Computers for their support.

-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
MailScanner thanks transtec Computers for their support.

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6.0.0.22.2.20061221062945.0257cbb8>