Port knocking script/server for fedora?

Matthew Miller mattdm at fedoraproject.org
Wed Nov 19 16:24:48 UTC 2014

On Wed, Nov 19, 2014 at 06:38:04AM -0600, Bruno Wolff III wrote:
> >If the main concern is ssh hacking, you might consider denyhosts (yum
> >install denyhosts). It's easy to set up and seems to be effective. The
> >logs make fascinating (and scary) reading.
> openssh stopped supporting tcpwrappers/libwrap in version 6.7 (which
> isn't in Fedora yet), so this will stop working in the not too
> distant future unless the Fedora maintainer puts that feature back
> in.

Use fail2ban -- it can manage iptables rules instead.

Matthew Miller
<mattdm at fedoraproject.org>
Fedora Project Leader

More information about the users mailing list