I have been watching the logfiles for almost a month now, and i noticed that the last week the ftp have been attacked alot... from all kind of IPs. I need to prevent this, and i can't change the port... for other reasons. So to get to the point: Can anyone help me getting denyhosts to work with pure-ftp? I'm running a ispconfig3 system on a centos 5.5
I suggest you use fail2ban instead. It should already come with a configuration for PureFTPd, but you will probably have to enable that.
If i understand it correctly, fail2host uses iptables to block IPs, I had some bad experience with this firewall... shutting myself out of the system etc When I try to reinstall the fail2ban it also want to install iptables again... and im running ssh on an alternative port from a remote location... is there an easy command to open that port on iptables before i install/enable it? I really don't want to get shut out again. I mean... will "iptables -A INPUT -p tcp --dport 4022 -j ACCEPT" do the trick?
