This post is part of the series ‘Setting up Ubuntu Server and make it secure’.
DenyHosts can be used to automatically detect invalid login attempts and then block this specific IP-adress for a certain time. This is especially useful against Brute-Force attacks.
Installing DenyHosts is very simple. Just execute:
sudo apt-get install denyhosts
This installs and starts DenyHosts automatically.
The only thing I changed in the configuration file ‘/etc/denyhosts.conf’ was, to disable email notification for new blocked hosts.
To do this, set ADMIN_EMAIL to an empty value:
BACK TO MAIN POST