[CentOS] Looking for recommendations for blocking hacking attempts

Thu Jul 9 14:56:34 UTC 2009
Neil Aggarwal <neil at JAMMConsulting.com>


I have been looking into projects that will automatically
restrict hacking attempts on my servers running CentOS 5.

I think the two top contenders are:
	DenyHosts - http://denyhosts.sourceforge.net
	Fail2ban - http://www.fail2ban.org

>From what I see, DenyHosts only blocks based on failed
SSH attempts whereas Fail2ban blocks failed attempts
for other access as well.

The main benefit I see from DenyHosts is their synchronization
service where my servers can proactively block hosts recognized
by other users of their service.

Does anyone have experience with these tools and have


Neil Aggarwal, (281)846-8957, www.JAMMConsulting.com
Will your e-commerce site go offline if you have
a DB server failure, fiber cut, flood, fire, or other disaster?
If so, ask me about our geographically redudant database system.