You are not logged in.
ok i've got stuff configured for denyhosts, but i'm looking at my logs, and the typical brute-force attempts are able to persist well over an HOUR before denyhosts kicks in, catches it in auth.log, and throws the IP in hosts.deny. there's a 30second polling interval set by default in /etc/denyhosts/denyhosts.cfg, so why, i'm wondering, does it take an hour for the obvious attacks to be stopped? thanks for any insights
karsten
Last edited by karsten (2007-07-30 00:11:34)
Offline