Bug#349940: ssh: does not obey /etc/hosts.deny

To: Marcos Pinto <markybob@gmail.com>
Cc: 349940@bugs.debian.org
Subject: Bug#349940: ssh: does not obey /etc/hosts.deny
From: Greg Norris <haphazard@kc.rr.com>
Date: Thu, 26 Jan 2006 16:44:19 -0600
Message-id: <[🔎] 20060126224419.GA32487@yggdrasil.localdomain>
Reply-to: Greg Norris <haphazard@kc.rr.com>, 349940@bugs.debian.org
In-reply-to: <[🔎] 62eb359a0601261256s6a41ean402626a51f5155c8@mail.gmail.com>
References: <[🔎] 20060126032052.GA23085@yggdrasil.localdomain> <[🔎] 62eb359a0601261256s6a41ean402626a51f5155c8@mail.gmail.com>

On Thu, Jan 26, 2006 at 02:56:24PM -0600, Marcos Pinto wrote:
> hosts.allow has "ALL: *"
> I want everyone to have access except for those in hosts.deny.  Is
> that not the proper way?

The settings in hosts.allow have precedence over hosts.deny, so this 
entry is overriding your denial rules.  Since the default action is to 
allow, just remove that entry and it should start behaving as you 
expect.  This is documented in the "hosts_access" manpage.

Attachment: signature.asc
Description: Digital signature

Reply to:

Follow-Ups:
- Bug#349940: ssh: does not obey /etc/hosts.deny
  - From: Greg Norris <haphazard@kc.rr.com>

References:
- Bug#349940: ssh: does not obey /etc/hosts.deny
  - From: Greg Norris <haphazard@kc.rr.com>
- Bug#349940: ssh: does not obey /etc/hosts.deny
  - From: Marcos Pinto <markybob@gmail.com>

Prev by Date: Bug#349940: ssh: does not obey /etc/hosts.deny
Next by Date: Bug#349940: ssh: does not obey /etc/hosts.deny
Previous by thread: Bug#349940: ssh: does not obey /etc/hosts.deny
Next by thread: Bug#349940: ssh: does not obey /etc/hosts.deny
Index(es):
- Date
- Thread