501
edits
Changes
From SME Server
Jump to navigationJump to searchInstallation instructions updated. Customizing instructions.
Line 15:
Line 15:
1. Log in (with username root) to the SMEserver console.+2. Install smeserver-denyhosts
− yum install smeserver-denyhosts --enablerepo=smecontribs+You will get a y/N-question, answer y if it looks fine.
−3. Instructions at the end of previous installation advices the following commands:+<br><code>signal-event post-upgrade and signal-event reboot</code>+
−'''it is recommended to do so !'''
−
−<br>but you can skip that using
−/etc/e-smith/events/actions/navigation-conf
−
−4. Open your webbrowser and go to the server-manager.
−<br>Under "Security" there should be a new line named "SSH Denyhosts".
−
−You should go to it and configure all necessary allowed host before enabling the service
−
−
−Alternatively you can use the server-manager panel "Software installer" to add a new package and select smeserver-denyhosts (repo smecontribs must be enabled) then do the reconfiguration and reboot task, instead of steps 1 to 3, then refresh your browser and configure denyhosts,.
+=== Editing configuration ===
=== Installation ===
=== Installation ===
−# Log in (with username root) to the SMEserver console.
+# Install smeserver-denyhosts<pre>/usr/bin/yum install smeserver-denyhosts --enablerepo=smecontribs</pre> You will get a y/N-question, answer y if it looks fine. There is no need to reboot the server.
+# Open your webbrowser and go to the server-manager.<br>Under "Security" there should be a new line named "SSH Denyhosts". You should go to it and configure all necessary allowed hosts before enabling the service. When done set status to 'enabled'.
−Alternatively you can use the server-manager panel "Software installer" to add a new package and select smeserver-denyhosts (repo smecontribs must be enabled) then do the reconfiguration and reboot task, instead of steps 1 and 2, then refresh your browser and configure denyhosts,.
−=== Editing configuration ===
−Q) How can the denyhost configuration be customized?
−A) You must copy the templates to the templates-custom directory and modify the appropriate fragments.
+ mkdir -p /etc/e-smith/templates-custom/etc/denyhosts.conf
+ cd /etc/e-smith/templates-custom/etc/denyhosts.conf/
+ cp ../../../templates/etc/denyhosts.conf/* .
+Now edit the appropriate files. See the [http://denyhosts.sourceforge.net/faq.html Denyhosts FAQ] for details. When done make your changes effective:
+ signal-event conf-denyhosts
−Q) How is an ip-address removed from the blocked list?
Q) How is an ip-address removed from the blocked list?
