Re: Securing telnet

To: Debian User <debian-user@lists.debian.org>
Subject: Re: Securing telnet
From: "Jason E . Murray" <jemurray@concentric.net>
Date: Tue, 4 Jul 2000 11:16:44 -0500
Message-id: <[🔎] 20000704111644.R5761@concentric.net>
In-reply-to: <[🔎] 20000704162105.A2038@kirks.net>; from patrick@kirks.net on Tue, Jul 04, 2000 at 04:21:05PM +0100
References: <[🔎] 20000704152916.A984@kirks.net> <[🔎] 20000704170434.L939@gurkensalat.interface-business.de> <[🔎] 20000704160911.A1757@kirks.net> <[🔎] 20000704101608.Q5761@concentric.net> <[🔎] 20000704162105.A2038@kirks.net>

I don't now right off hand if sshd that comes with debian is linked with the
libtcp or not, but try not putting that in the /etc/hosts.allow and if you are
denied access to ssh to the box, try putting:

	sshd: ALL

in the /etc/hosts.allow.

Also, does tcpd accept CIDR notiation now - I saw a response that included:

	10.0.0/8

I didn't believe this was allowed?  (Although I have not looked at TCPD) in
a long time.  

Personally I think this program is useless, you should always use 
ipfwadm/ipchains/netfilter/ipf.  They are MUCH better for securing your system
then tcpd. 

--jason

On Tue, Jul 04, 2000 at 04:21:05PM +0100, Patrick Kirk wrote:
> > everything).  
> > 
> > In your hosts.allow you should have (in addition to anything else you have):
> > 
> > 	in.telnetd: 10.0.0.
> >
> Won't that mean that ssh from remote is DENYed?
> 
>

Reply to:

References:
- Securing telnet
  - From: Patrick Kirk <patrick@kirks.net>
- Re: Securing telnet
  - From: Thomas Guettler <guettli@gurkensalat.interface-business.de>
- Re: Securing telnet
  - From: Patrick Kirk <patrick@kirks.net>
- Re: Securing telnet
  - From: "Jason E . Murray" <jemurray@concentric.net>
- Re: Securing telnet
  - From: Patrick Kirk <patrick@kirks.net>

Prev by Date: Re: window-managers and GUI environments
Next by Date: Re: Securing telnet
Previous by thread: Re: Securing telnet
Next by thread: Re: Securing telnet
Index(es):
- Date
- Thread