FreeBSD Port: denyhosts-2.6_1 (fwd)

Daniel Dvořák dandee at hellteam.net
Wed Mar 19 04:17:00 PDT 2008 

Thank you.

We will look forward for 2.7.

Bye

Dan 

-----Original Message-----
From: Phil Schwartz [mailto:phil_schwartz at users.sourceforge.net] 
Sent: Monday, March 17, 2008 2:41 PM
To: Mohacsi Janos
Cc: Daniel Dvořák
Subject: Re: FreeBSD Port: denyhosts-2.6_1 (fwd)


Hello,

This will be fixed in 2.7.  For now, simply place the following entry in
your denyhosts.cfg file, save and then restart denyhosts:



FAILED_ENTRY_REGEX7 = User (?P<user>.*) .*from (?P<host>.*?) not allowed 
because not listed in AllowUsers$


make sure that the entry appears on a single line.

Regards,

Phil


Mohacsi Janos wrote:
> Corrected e-mail. Please help investigating.
> 
> Janos Mohacsi
> Network Engineer, Research Associate, Head of Network Planning and
Projects
> NIIF/HUNGARNET, HUNGARY
> Key 70EF9882: DEC2 C685 1ED4 C95A 145F  4300 6F64 7B00 70EF 9882
> 
> ---------- Forwarded message ----------
> Date: Mon, 17 Mar 2008 10:29:43 +0100 (CET)
> From: Mohacsi Janos <mohacsi at niif.hu>
> To: Daniel Dvořák <dandee at hellteam.net>
> Cc: ports at FreeBSD.org, phil_schwartz at users.sourceforge.netd
> Subject: Re: FreeBSD Port: denyhosts-2.6_1
> 
> Dear Daniel,
>      I have CC'ed the author of denyhosts he migth help.
>      Best Regards,
> 
> Janos Mohacsi
> Network Engineer, Research Associate, Head of Network Planning and
Projects
> NIIF/HUNGARNET, HUNGARY
> Key 70EF9882: DEC2 C685 1ED4 C95A 145F  4300 6F64 7B00 70EF 9882
> 
> On Mon, 17 Mar 2008, Daniel Dvořák wrote:
> 
>> Hi Janos,
>>
>> I have 2 servers with denyhosts and everytime I receive the security 
>> mail with many attempts to login to my systems and everytime I am 
>> surprised why that, if I have denyhosts.
>>
>> I have found out from this link 
>> (https://bugs.launchpad.net/ubuntu/feisty/+source/denyhosts/+bug/133569) 
>> that I am not alone with these regex errors.
>>
>> I use AllowUsers option in sshd.conf to speed up to deceide what is 
>> secured and what is ssh brute attack.
>>
>> But as I see, denyhosts has a problem to determine what to do with it.
>>
>> I suppose there is the same problem like in ubuntu/debian package and 
>> needs to be fixed.
>>
>> I could add in-depth report about "regex pattern ( User (?P<user>.*) 
>> not allowed because not listed in AllowUsers ) is missing 'host' 
>> group", if it is needed of course.
>>
>>
>> Bye.
>>
>> Dan

More information about the freebsd-ports mailing list