I was getting so many brute force attempts on ssh that the server was not able to do anything
else but check passwords - thus a DOS. I started using denyhosts on all internet facing
servers and have not had that problem since. I find I really like the simplicity of denyhosts.