Block traffic to server based on known bad hosts list

1

there used to be a project like denyhosts that would block bad ips from reaching your server but as far as i understand that is now dead? https://askubuntu.com/questions/433924/package-denyhosts-in-ubuntu-trusty-tahr-is-deleted-temporary-or-forever

Is there anything else like this? I primarily want to block traffic to my nginx server because SSH is already limited to my static ip.

Maciej Swic

Posted 2014-10-31T17:41:05.843

Reputation: 730

The question that you link to has several good answers, including the use of iptables or fail2ban. Is there some reason why those answers do not work for you? – John1024 – 2014-10-31T17:47:23.607

I already use fail2ban for ssh just in case the ip filter would not work for some reason and the iptables solutions i found are all static. denyhosts would update it self automatically and was a set it and forget it solution. – Maciej Swic – 2014-10-31T17:49:48.573

Also, fail2ban won't really work for my nginx setup without a looot of configuration as i have an access/error log per site spread out all over the disk. – Maciej Swic – 2014-10-31T17:50:28.107

1

It looks like DenyHosts is no longer dead: http://denyhost.sourceforge.net/CHANGELOG.txt You could download and install the current version.

– John1024 – 2014-10-31T17:57:55.517

Answers

1

denyhosts was dead: after the version 2.6 (Dec 7, 2006), there were no updates for six years. It is, however, now alive. It has had two releases in 2014. The changelog is here. You can download the latest version from here.

John1024

Posted 2014-10-31T17:41:05.843

Reputation: 13 893

Asked: 2014-10-31T17:41:05.843

Viewed: 109 times

Active: 2014-10-31T19:05:41.723