2009/1/22 Chris Adams <cmadams(a)hiwaay.net>:
[snip]
- easier to manage "dynamic" access control such as done
with denyhosts
[snip]
functionality back. Somebody could teach denyhosts about iptables
instead of /etc/hosts.deny (shouldn't be too hard to manage with a
couple of new scripts).
Incidentally this is precisely what fail2ban can do (i.e. use iptables
rather than /etc/hosts.deny).
J.