On Apr 02, Colin Watson <cjwatson@debian.org> wrote: > At the time, denyhosts was popular, but it was removed from Debian > several years ago. I remember that, when I dealt with that on my own > systems, fail2ban seemed like the obvious replacement, and my impression > is that it's pretty widely used nowadays; it's very pluggable but it > normally works by adding firewall rules. Are there any similar popular > systems left that rely on editing /etc/hosts.deny? Yes, people. I object to removing TCP wrappers support since the patch is tiny and it supports use cases like DNS-based ACLs which cannot be supported by L3 firewalls. -- ciao, Marco
Attachment:
signature.asc
Description: PGP signature