Sylvester Lykkehus wrote:
Hello list,
In an attempt minimize ssh brute force attacks, I deployed denyhosts ( http://denyhosts.sf.net ) some time ago on a openSUSE 10.2 server. It's working perfectly, and I am very pleased with it.
Now I want to take denyhosts out of daemon mode, and only be executed upon ssh connection attempts.
Deamons only get CPU cycles when they need to run. By reconfiguring it as you propose, you're going to be continually re-loading it every time it needs to execute, slowing down both overall system performance and network performance. Even being reloaded after getting swapped out to disk is faster than continually looking up the file's path and walking through the filesystem to load up the executable every time, as opposed to going directly to the correct blocks needed in a swap partition. Taking all of that into account, I would just leave things as they are since you're satisfied that it's working properly. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org