Denyhosts is a daemon which watches for failed ssh login attempts and blocks them. I have long maintained denyhosts in Fedora and while I did not originally agree with it being branched to EPEL, I have done light maintenance on EPEL7 as well. The EPEL6 branch is, however, very old. The upstream project is mostly moribund. The software does not support reading from the systemd journal; I spent some effort trying to make that work but the core logic is very poorly suited to doing it properly. It did sort of work but was never in an upstreamable state. The software also primarily works by modifying /etc/hosts.deny, which was rendered useless when tcp_wrappers support was removed from our openssh packaging. It can support iptables, but doesn't properly support firewalld and in any case requires manual configuration to set this up. In general, fail2ban is simply a far better choice. The primary feature it appears to lack is the ability to synchronize lists of blocked hosts between machines. (And I could be quite wrong about that.) My intent is to retire denyhosts in rawhide, EPEL7 and EPEL6 in a week, but I will happily hand it over to someone who wishes to maintain it properly moving forward. I may even be willing to stay on as a comaintainer in that case, at least for a bit. If you do wish to take over maintenance, there are a few open bugs and an update to 3.0 or 3.1beta (released in 2015) would probably be needed, as well as a switch to python3. - J< _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx/message/X5DR3GSII2GRRKWKK5Q76KR4LXR2YFHD/
