Bug#395535: openssh-server: versions 1:4.3p2-3 and 1:4.3p2-5 work for me
Package: openssh-server
Followup-For: Bug #395535
I've tried reproducing this with two versions (p2-3 and p2-5) of the openssh-server package,
and the example provided by Greg Morris works fine with both versions.
However, the original poster reported this not working (i.e. the connection was allowed instead of denied)
with versions p2-2 and p2-5 when 127.0.0.1 was added to hosts.deny.
Could this be just a matter of hosts.deny syntax?
If I add a line to /etc/deny.hosts containing only the IP address
127.0.0.1
then connections from localhost are allowed through. If I change that line to
ALL: 127.0.0.1
or
sshd: 127.0.0.1
then ssh is denied the connection, as it should be.
-- System Information:
Debian Release: testing/unstable
APT prefers testing
APT policy: (500, 'testing'), (498, 'testing'), (200, 'stable'), (2, 'unstable')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.4.26
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Versions of packages openssh-server depends on:
ii adduser 3.77 Add and remove users and groups
ii debconf [debconf-2.0] 1.5.3 Debian configuration management sy
ii dpkg 1.13.21 package maintenance system for Deb
ii libc6 2.3.6-15 GNU C Library: Shared libraries
ii libcomerr2 1.38-2 common error description library
ii libkrb53 1.4.3-4 MIT Kerberos runtime libraries
ii libpam-modules 0.79-3 Pluggable Authentication Modules f
ii libpam-runtime 0.79-3 Runtime support for the PAM librar
ii libpam0g 0.79-3 Pluggable Authentication Modules l
ii libselinux1 1.30-1 SELinux shared libraries
ii libssl0.9.8 0.9.8b-2 SSL shared libraries
ii libwrap0 7.6.dbs-8 Wietse Venema's TCP wrappers libra
ii openssh-client 1:4.3p2-3 Secure shell client, an rlogin/rsh
ii zlib1g 1:1.2.3-13 compression library - runtime
openssh-server recommends no packages.
-- debconf information excluded
Reply to: