[wellylug] Securing my ssh box
Jim Cheetham
jim at gonzul.net
Wed Aug 23 13:37:07 NZST 2006
On Wed, Aug 23, 2006 at 01:02:13PM +1200, David Antliff wrote:
> >I trim out denied hosts every day, taking out entries over 5 days old.
> >Haven't double-checked to see if there are repeat offenders; but getting
> >30 seconds worth of hacking every 5 days sounds like a decent
> >compromise.
>
> DenyHosts can do this automatically I think - you just configure how long
> you want them to remain and it will prune them itself (if not using daemon
> mode, you need to invoke with --prune IIRC).
Yep; that's what I'm using. A daily cron call to denyhosts prune
function
More information about the wellylug
mailing list