i use APF with their brute force detection script. it's quite awesome. bans all those auto spamming accounts that try to guess user names and passwords on your ssh or ftp
Check the Kiss readme or manual pages. Or use the exisiting startup files as reference. For example, the MySQL, Apache, or DirectAdmin startup files. Using one of those as a basic setup you can configure it for Kiss.