X-Recipient: archive-cygwin AT delorie DOT com
X-Spam-Check-By: sourceware.org
To: <cygwin AT cygwin DOT com>
References: <47b8d665 DOT 02fd220a DOT 6f30 DOT 11eb AT mx DOT google DOT com> <fpaoeh$dpi$1 AT ger DOT gmane DOT org> <47b8f1ea DOT 2de2220a DOT 2c5d DOT 2181 AT mx DOT google DOT com> <47B8F571 DOT 3020700 AT computer DOT org> <47b8fc94 DOT 50e3220a DOT 09d0 DOT ffffdc97 AT mx DOT google DOT com> <fpavag$rg5$1 AT ger DOT gmane DOT org>
In-Reply-To: <fpavag$rg5$1@ger.gmane.org>
Subject: RE: Stop Brute Force Attack on SSH
Date: Mon, 18 Feb 2008 00:25:15 -0600
MIME-Version: 1.0
Content-Type: text/plain; 	charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 12.0
Content-Language: en-us
From: "Kyle A. Dawson" <kyle DOT a DOT dawson AT gmail DOT com>
Message-ID: <47b924d1.1df0220a.2ba5.244a@mx.google.com>
X-IsSubscribed: yes
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com

Yes, reading the readme file, I found that the pid file name.  I changed it
to the normal path

/var/run/denyhost.pid

But when it starts it stall says the same error:

DenyHosts could not obtain lock (pid: )
[Errno 2] No such file or directory: '/var/lock/subsys/denyhosts'

I change the -x option to /var/run/denyhost.pid , still same issue
I run the command not as service, just command. 
 	/usr/share/denyhosts/daemon-control start 
	Same issue
I removed the service and rebooted the machine, same issue
I create the dir/file name, /var/lock/subsys/denyhosts, same issue.
I search there the files and registry for sybsys and could not find it.

Not sure what to do next.

Besides the pid file, all looks good.

Here is my damon-control file:

#!/usr/bin/env python
# denyhosts     Bring up/down the DenyHosts daemon
#
# chkconfig: 2345 98 02
# description: Activates/Deactivates the
#    DenyHosts daemon to block ssh attempts
#
###############################################

###############################################
#### Edit these to suit your configuration ####
###############################################

DENYHOSTS_BIN   = "/usr/bin/denyhosts.py"
DENYHOSTS_LOCK  = "/var/run/denyhosts"
DENYHOSTS_CFG   = "/usr/share/denyhosts/denyhosts.cfg"

PYTHON_BIN      = "/usr/bin/env python"


Also, what should I do for the SECURE_LOG setting:

This is the denyhost.cfg

########################################################################
#
# SECURE_LOG: the log file that contains sshd logging info
# if you are not sure, grep "sshd:" /var/log/*
#
# The file to process can be overridden with the --file command line
# argument
#
# Redhat or Fedora Core:
SECURE_LOG = /var/log/secure
#
# Mandrake, FreeBSD or OpenBSD: 
#SECURE_LOG = /var/log/auth.log
#
# SuSE:
#SECURE_LOG = /var/log/messages
#
# Mac OS X (v10.4 or greater - 
#   also refer to:   http://www.denyhosts.net/faq.html#macos
#SECURE_LOG = /private/var/log/asl.log
#
# Mac OS X (v10.3 or earlier):
#SECURE_LOG=/private/var/log/system.log
#
########################################################################

Kyle



--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/