Re: Does anyone use tcp wrappers (hosts.allow/hosts.deny) anymore?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 

Matthew Miller wrote:
> On Thu, Mar 20, 2014 at 06:14:56PM -0300, Fernando Cassia wrote:
<snip>
>> Fail2ban is one piece of software which interfaces with tcp wrappers.
>> v0.9.0 just out
>> http://www.fail2ban.org/wiki/index.php/Main_Page
>
> Yes, and know for sure people use that -- I do, for example. But I use it
> to manipulate IP tables, which is more secure and less fragile than the
> hosts.deny action (it's always a bit scary when configuration files are
> edited by a program!). Because it is actively maintained upstream, there's
> even support for new things like firewalld.
<snip>

Yup - that's what we do here, use fail2ban to manipulate iptables.

      mark

_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux