By Ashley on 2007-04-11
Nothing too fancy, every 15 minutes it scans /var/log/auth and acts on it: if some one tries to logging as root or some other invalid user they get blocked. It allows a few failed attempts for real users just in case - this only applies to passwords, not usernames!
Let me know how it works for you :)
[update]Project under reorganisation[/update]