Hello list, In an attempt minimize ssh brute force attacks, I deployed denyhosts ( http://denyhosts.sf.net ) some time ago on a openSUSE 10.2 server. It's working perfectly, and I am very pleased with it. Now I want to take denyhosts out of daemon mode, and only be executed upon ssh connection attempts. I found generous amount of documentation on how to do this, and denyhosts FAQ even links to a (now defunct) website explaining how to do it. The information is equivalent to what can be found at http://gentoo-wiki.com/HOWTO_Protect_SSHD_with_DenyHosts#Alternative_Configu... This is were I run into troubles. According to http://linux.about.com/od/commands/l/blcmdl5_hostsde.htm under the "Patterns" section: "A string that begins with a `/' character is treated as a file name. A host name or address is matched if it matches any host name or address pattern listed in the named file." ...which seems to support the aforementioned configuration options. The thing is, I cant get it to work. Not the file option, nor the spawn setting. Infact, this simple test case fails: --- /etc/hosts.deny: sshd: /etc/sshd.deny /etc/sshd.deny: sshd: 10.0.0.3 --- I also tried various other formats for /etc/sshd.deny, such as whitespace seperated, as suggested by the about.com article. If i place "sshd: 10.0.0.3" directly in hosts.deny, it works. Any ideas ? Best regards Sylvester Lykkehus -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org