Installing DenyHosts
Tuesday, February 19th, 2008 | Web Thinkering
To prevent Dictionary attacks, you can use DenyHosts to stay protected
On Ubuntu or debian
apt-get install python wget
apt-get install denyhosts
and go directly to edit the configuration file, if you want to have it from the source, follow to the next step.
tar xvzf DenyHosts-2.6.tar.gz
cd DenyHosts-2.6
python setup.py install
Now, you should configure to fit your needs, first copy the conf file example
cp /usr/share/denyhosts/denyhosts.cfg-dist /usr/share/denyhosts/denyhosts.cfg
Now edit the denyhosts.cfg
pico /usr/share/denyhosts/denyhosts.cfg
make sure you have this two options how your distro of Linux needs
SECURE_LOG = /var/log/auth.log
LOCK_FILE = /var/run/denyhosts.pid
The above example is for Debian / Ubuntu, etc.
Here you have how should be for some of other Linux distributions
# Redhat or Fedora Core: #SECURE_LOG = /var/log/secure # # Mandrake, FreeBSD or OpenBSD: #SECURE_LOG = /var/log/auth.log # # SuSE: #SECURE_LOG = /var/log/messages
Now make it possible for DenyHosts to run as a daemon
cd /usr/share/denyhosts
cp daemon-control-dist daemon-control
pico daemon-control
Make sure this is like your distro needs
############################################### #### Edit these to suit your configuration #### ############################################### DENYHOSTS_BIN = "/usr/bin/denyhosts.py" DENYHOSTS_LOCK = "/var/lock/subsys/denyhosts" DENYHOSTS_CFG = "/usr/share/denyhosts/denyhosts.cfg" PYTHON_BIN = "/usr/bin/env python" for Ubuntu / Debian you should change the ############################################### #### Edit these to suit your configuration #### ############################################### DENYHOSTS_LOCK = "/var/lock/subsys/denyhosts.pid"
Make sure the root owns the daemon-control file, and the permissions are 700
chown root:root daemon-control
chmod 700 daemon-control
create the link for the daemon-control script
cd /etc/init.d
ln -s /usr/share/denyhosts/daemon-control denyhosts
update-rc.d denyhosts defaults
/etc/init.d/denyhosts start
In RedHat Distributions you should do.
cd /etc/init.d
ln -s /usr/share/denyhosts/daemon-control denyhosts
chkconfig –add denyhosts && chkconfig denyhosts on
service denyhosts start
No comments yet.
Leave a comment
Earn Money
Recent Posts
- Asia Century? Well they didn’t pay me.
- Looking for Eraserheads Concert Tickets?
- Testing Asiacentury Philippines on my websites
- Late Google Adsense Payments via Western Union for July
- Noli De Castro and BJ Penn at UFC 86
- Why Smartbro is the largest Broadband Network in the Philippines
- Moving to Sta. Maria, Bulacan