Deny hosts is a tiny program that will add ip addresses to the /etc/hosts.deny file when automated scripts try and brute force attack the sshd port.

The main vulnerability is the ROOT account which, should never be used to log into SSHD.

Set up a new user, add a strong password and then SSH into the server, su – will then allow you root priviledges.

To setup denyhosts

yum install denyhosts

then edit the config file

nano /etc/denyhosts/denyhosts.cfg

then start the daemon

/etc/init.d/denyhosts start

Comments are closed.