Re: Apache Changing IPtables C 5.6 via Apache

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



On 08/21/2011 02:34 PM, Craig White wrote:
>> Maybe SELinux blocks Apache from writing to /etc/sysconfig/iptables?
>> Have you looked at fail2ban and denyhosts? These apps seem to offer a
>> similar solution.
> ----
> fail2ban and denyhosts center on failed logins - I don't think this is
> what he is dealing with.

Afaik both are configurable for what you want them to listen for and how 
you want them to react to. Agree that their popular use is for listening 
for failed logins and then blocking the originating IP address. But with 
a little regex creativity, perhaps Paul could use them for his purpose.

Regards,
Patrick
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos


[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux