OpenSSH 6.7 will bring socket forwarding and more

I didn't mean that their intention was to DOS you... I think it's just sloppy bot coding, where they ruthlessly make as many simultaneous connections as possible, each trying different username/password combinations... The DOS is a just side-affect of the password-guessing attempt... I've seen it in action before, where legit users were getting booted when trying to connect, and it turned out some stupid automated attack was managing to hold all the outstanding unauthed connections sshd was configured to allow (I think 10 is the default, so it's really not difficult to hit that limit)... If the attack is coming from a single IP, then the DenyHosts thing works very well at stopping that crap in its tracks very quickly... If it's coming from multiple IPs via a botnet, it's still helpful, and I don't care if a compromised end-user host is blocked, because if they're compromised I don't want them connecting to my server!

Yes, there are other approaches that can work too, as I said, but I just really like the simple hosts.deny approach...