root@blackbird:~# ls -la /var/lib/denyhosts
drwxr-xr-x 2 root root 4096 May 26 09:36 .
drwxr-xr-x 35 root root 4096 May 25 22:56 ..
-rw-r--r-- 1 root root 110 May 26 09:36 allowed-hosts
That's what is in it, my home's IP address (as received from my ICPs DHCP server), my public servers and the loopback - (have replaced numbers with letters to hide my addresses)
root@blackbird:~# cat /var/lib/denyhosts/allowed-hosts
# allowed hosts not to be blocked
But why does it matter? Again, denyhosts is not running, but the x.y.z.10 address keeps being added with ALL: x.y.z.10 to /etc/hosts.deny, when I perform normal seemingly operations. For example, when I runn Smartftp on my PC and and try to transfer some data into a directory, whith no public write accesss, the server will give and access denied to me (what you would expect). Immediately my ip address is added to hosts.deny and the connection will be lost (wouldn't expect that without denyhosts running).
See, no denyhosts:
root@blackbird:~# ps aux |grep deny
root 5981 0.0 0.2 1796 536 pts/0 R+ 05:54 0:00 grep deny