NFS tcp wrapper situation

[Jonathan Underwood]

2009/1/22 Chris Adams <cmadams at hiwaay.net>:
[snip]
> - easier to manage "dynamic" access control such as done with denyhosts
>
[snip]
> functionality back.  Somebody could teach denyhosts about iptables
> instead of /etc/hosts.deny (shouldn't be too hard to manage with a
> couple of new scripts).

Incidentally this is precisely what fail2ban can do (i.e. use iptables
rather than /etc/hosts.deny).

J.