[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#395535: Syntax



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Yes, i understand the hosts.deny syntax.  Here's a sample of the file:

ALL: 59.124.63.98
ALL: 61.187.78.23

sshd: 216.75.32.2
sshd: 222.122.56.141

...

I have something called DenyHosts which looks at auth.log, checks for X
number of bogus login attempts, and adds offending IPs to hosts.deny.

What first tipped me off to this not working was when i saw entries that
DenyHosts had added an IP to hosts.deny - but auth.log still showed
login attempts AFTER that timestamp. Anywhere from 5 minutes to a few
hours later!

So, i tried the localhost test, and it failed.  I added

ALL: 127.0.0.1

to hosts.deny, and tried

ssh localhost
as well as
ssh 127.0.0.1
and both times, i get a login prompt.

Thusly:

- -----
wil-db-1:~# aptitude show openssh-server
Package: openssh-server
New: yes
State: installed
Automatically installed: yes
Version: 1:4.3p2-5

- -----

wil-db-1:~# cat /etc/hosts.deny|grep 127.0.0.1
sshd: 127.0.0.1
wil-db-1:~# ssh 127.0.0.1

***************************************************************************
                            NOTICE TO USERS


This computer system is the private property of Solutions for Progress,
Inc., whether
individual, corporate or government.  It is for authorized use only.
Users (authorized or unauthorized) have no explicit or implicit
expectation of privacy.
...

****************************************************************************

Password:

- -----


Clearly it is not working as intended.  Why, i dunno.  I've upgraded it
once and reinstalled it twice.  I don't get it.

Could there be something wrong with libwrap itself on my system?
Silently failing?

- --
Rob Munsch
Solutions For Progress IT
www.solutionsforprogress.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFFSQbaBvBcJFK6xYURAqgkAJ9dxknsKdXZOt+lJVSWWkecT5KhnwCfYCf2
8HgnUicaGq1DwLEzifxwEa8=
=/Rys
-----END PGP SIGNATURE-----




Reply to: