From: Joseph G. <jg...@ha...> - 2015-08-03 18:10:22
|
Hi Jason, Thanks for the follow up... It was indeed the log file being huge :). The file is on a normal rotation cycle so it has since rotated to a compressed file for archiving. The system is quite a popular one in the hacker community, apparently, as the secure file can grow over 60 - 160 megs in a day HAH! Most of the systems I use Denyhosts on are smaller, less "known" hosts, so the secure file is like 5 - 10 megs and denyhosts fires right up, so it took me off guard. At this time, Denyhosts is working as it should. Thanks again!!! Joe Giles System Administrator HaloRiver Management Group jg...@ha... (w) 505-349-0380 (c) 505-225-4188 skype: joe-haloriver On Mon, Aug 3, 2015 at 12:02 PM, Jason L Tibbitts III <ti...@ma...> wrote: > >>>>> "JG" == Joseph Giles <jg...@ha...> writes: > > JG> I am using CentOS 6.6 fully updates and the following version of > JG> Denyhosts: > > JG> denyhosts-2.6-20.el6.noarch > > Unfortunately Centos6 is very old. (I know it's supported by Red Hat > but it was based off a Fedora so old that I can't remember what systems > and versions of things it actually has.) It looks like you're using the > EPEL package, which I have updated to fix security problems in the past > but which I don't really maintain because the modern packages don't even > build. If you use the regular EPEL support channel for assistance (see > below) I might be willing to cook up a package for a more recent > version. > > JG> I have it installed and configured to my liking, but when I do a > JG> service denyhosts start, it just sticks at: > > JG> /etc/init.d/denyhosts start Starting denyhosts: > > JG> And never comes back with OK. > > Didn't your package come with documentation which explains that? There > should be a README.Fedora file which explains this, though I guess that > package release may be old enough to not have it. I can't really > remember what's in those ancient releases. > > Anyway, the simple answer (assuming my guess about your problem is > correct) is to rotate /var/log/secure. Or just wait for denyhosts to > finish processing all of your old logs but I recommend the former. You > can manually process the rotated log later. > > Also, if you're going to use packages from some kind of distribution > like EPEL, it's probably best to file bugs for this kind of thing with > their support channel. For EPEL packages that would be > http://bugzilla.redhat.com > > - J< > -- The information (including any attachments) contained in this document is confidential and is for the use only of the intended recipient. If you are not the intended recipient, you should delete this message. Any distribution, disclosure, or copying of this message, or the taking of any action based on its contents is strictly prohibited. |