When I tried to start denyhosts on tempest, it failed like this:
# service denyhosts start Starting denyhosts: Error reading file: /etc/denyhosts.conf [Errno 2] No such file or directory: '/etc/denyhosts.conf' [FAILED]
I found that we do have a configuration file on Tempest; it’s in /etc/denyhosts/denyhosts.conf. I compared it to the one on Puma, and it seems that Carolyn had duplicated all the configuration changes we’d made on Puma. So, I decided to see what would happen if we just did:
ln -s /etc/denyhosts/denyhosts.conf /etc/denyhosts.conf
I started denyhosts and had no problems.
I did notice, though, that a 149.130. IP address was immediately added to /etc/hosts.deny. I checked /etc/hosts.allow, and I saw that we didn’t have the blanket pass in there for all 149.130 IP addresses and a few others, so I copied that data over from Puma. I tested logging into Tempest from finch (the denied host) and it worked.
Also, on Puma’s denyhosts config, I commented out the email address, since we get too many emails from denyhosts on puma and we trust it pretty well by now. I’ve left the email config on tempest. We can turn it off when we trust it.
Scott
