rpms/denyhosts/devel README.fedora, 1.5, 1.6 denyhosts-2.6-config.patch, 1.3, 1.4 denyhosts.spec, 1.53, 1.54
Jason ティビツ
tibbs at fedoraproject.org
Thu Nov 13 16:18:07 UTC 2008
Author: tibbs
Update of /cvs/extras/rpms/denyhosts/devel
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv23458
Modified Files:
README.fedora denyhosts-2.6-config.patch denyhosts.spec
Log Message:
* Thu Nov 13 2008 Jason L Tibbitts III <tibbs at math.uh.edu> - 2.6-15
- Tweak default config file and add info to README.Fedora asking folks not to
use sync and to report bugs upstream if they do.
Index: README.fedora
===================================================================
RCS file: /cvs/extras/rpms/denyhosts/devel/README.fedora,v
retrieving revision 1.5
retrieving revision 1.6
diff -u -r1.5 -r1.6
--- README.fedora 31 Mar 2006 21:05:05 -0000 1.5
+++ README.fedora 13 Nov 2008 16:17:36 -0000 1.6
@@ -34,6 +34,30 @@
DenyHosts can also handle logs compressed with gzip or bzip2.
+Notes about sync
+----------------
+Denyhosts can communicate with a remote server to exchange information about
+blocked hosts. This functionality is disabled by default. The maintainers of
+this package in Fedora do not recommend enabling the sync functionality for the
+following reasons:
+
+*) It has been linked to hangs and crashes of the daemon. The upstream
+ developers have not been able to fix these issues.
+
+*) The server itself is closed-source, so these problems cannot be debugged
+ from the server end by anyone other than the upstream developers.
+
+If you choose to enable the sync functionality, please do the following:
+
+*) Watch your denyhosts daemon carefully. If it exits inexplicably or hangs,
+ attempted ssh hacks will not be blocked automatically.
+
+*) Report issues to the upstream developers (at http://denyhosts.sf.net).
+ Please do not report issues to Fedora; we cannot fix them.
+
+Denyhosts has proven to be very stable when sync functionality is not enabled.
+
+
Notes about upgrading
---------------------
If upgrading from DenyHosts 0.6.0 or earlier, note that this package
denyhosts-2.6-config.patch:
Index: denyhosts-2.6-config.patch
===================================================================
RCS file: /cvs/extras/rpms/denyhosts/devel/denyhosts-2.6-config.patch,v
retrieving revision 1.3
retrieving revision 1.4
diff -u -r1.3 -r1.4
--- denyhosts-2.6-config.patch 22 Sep 2008 18:26:46 -0000 1.3
+++ denyhosts-2.6-config.patch 13 Nov 2008 16:17:36 -0000 1.4
@@ -1,5 +1,5 @@
--- denyhosts.cfg-dist.config 2006-08-20 09:09:57.000000000 -0500
-+++ denyhosts.cfg-dist 2008-09-22 10:49:14.000000000 -0500
++++ denyhosts.cfg-dist 2008-11-13 09:43:20.000000000 -0600
@@ -55,13 +55,18 @@
# 'y' = years
#
@@ -61,3 +61,12 @@
######################################################################
######################################################################
+@@ -530,6 +542,8 @@
+ # To disable synchronization (the default), do nothing.
+ #
+ # To enable synchronization, you must uncomment the following line:
++#
++# NOTE: Please read README.Fedora before enabling sync
+ #SYNC_SERVER = http://xmlrpc.denyhosts.net:9911
+ #
+ #######################################################################
Index: denyhosts.spec
===================================================================
RCS file: /cvs/extras/rpms/denyhosts/devel/denyhosts.spec,v
retrieving revision 1.53
retrieving revision 1.54
diff -u -r1.53 -r1.54
--- denyhosts.spec 7 Nov 2008 22:20:43 -0000 1.53
+++ denyhosts.spec 13 Nov 2008 16:17:36 -0000 1.54
@@ -1,6 +1,6 @@
Name: denyhosts
Version: 2.6
-Release: 14%{?dist}
+Release: 15%{?dist}
Summary: A script to help thwart ssh server attacks
Group: Applications/System
@@ -163,6 +163,10 @@
%changelog
+* Thu Nov 13 2008 Jason L Tibbitts III <tibbs at math.uh.edu> - 2.6-15
+- Tweak default config file and add info to README.Fedora asking folks not to
+ use sync and to report bugs upstream if they do.
+
* Fri Nov 07 2008 Jason L Tibbitts III <tibbs at math.uh.edu> - 2.6-14
- Add patch from upstream to fix command line --sync.
More information about the scm-commits
mailing list