#22 /etc/hosts.allow not used? and maintenance of allowed hosts

[Anonymous]

Hello, my system is "Fedora 7" with "denyhosts-2.6-5.fc7"

I think that "denyhosts" reads the allowed hosts from "/var/lib/denyhosts/allowed-hosts" and not from "/etc/hosts.allow", maybe it has a configuration entry like "HOSTS_DENY=/etc/hosts.deny" for denied hosts in "/etc/denyhosts.conf", but I don't find it in the well documented configuration file. If "denyhosts" don't read "/etc/hosts.allow", is it a design decision or can be it implemented? I think that just for consistency, since I use "/etc/host.deny" for the denied hosts, and I have a "/etc/hosts.allow" file but doesn't seems to work with "denyhosts".

Also, need I to *explicitly* say in the mentioned "/var/lib/denyhosts/allowed-hosts" file what hosts are allowed ? since I tried to connect from my computer IP, I can login "ssh", but then my IP get added to the "/etc/hosts.deny" file, and I can't no longer login ssh again if I don't delete it, will it work this way from outside IPs not listed in "/var/lib/denyhosts/allowed-hosts" ?

Well, a lot of questions, I expect that you have time to answer it.

I installed "denyhosts" by simply reading an article about securing ssh, I was thinking it must be safer to do it, but not thinking that ssh *needs* a defense against brute force attacks. Then I discovered that I was suffering attacks by 13 IPs, I only enabled the "ssh" daemon since less than a week so I still don't know how is that it found my computer so quickly. So thank you for your work on this project.