Welcome to DenyHosts

165,000+ synchronization users

Special thanks

What is DenyHosts?

If you've ever looked at your ssh log (/var/log/secure on Redhat, /var/log/auth.log on Mandrake, etc...) you may be alarmed to see how many hackers attempted to gain access to your server. Hopefully, none of them were successful (but then again, how would you know?). Wouldn't it be better to automatically prevent that attacker from continuing to gain entry into your system?

DenyHosts attempts to address the above... and more.

DenyHosts was the Unix Review: Tool of the Month for August 2005

Hire me!

What's new?

DenyHosts v2.6 is the latest release. This release contains a minor DoS security fix and some minor bug fixes. The DoS security issue affects all versions of DenyHosts prior to v2.6. All users are urged to upgrade to DenyHosts v2.6. Consult the Changelog for the gory details.

Denyhosts v2.3 contains a security fix (purged hosts were not always re-added when they should have been). If you are using an earlier version it is strongly recommended that you upgrade to v2.3 or later.

DenyHosts v2.1 includes the following:

DenyHosts now has an easier to remember url: www.denyhosts.net

If you are upgrading from a version prior to 1.0.0 please read this important FAQ entry.

You can Download the latest version of DenyHosts or view the Changelog.

To find out more, check out the DenyHosts FAQ.

You can also read an indepth independent article about DenyHosts by AgentOrange at OrangeCrate.

As seen elsewhere

Need help?

SSH log entry showing a successful login SSH log entry showing a failed attempt of a valid user account (eg. root) SSH log entry showing a failed attempt of a non-existent user account (eg. blah)

Requirements