Re: hosts.allow/hosts.deny question

To: "Eric G . Miller" <egm2@jps.net>, debian-user@lists.debian.org
Subject: Re: hosts.allow/hosts.deny question
From: Ethan Benson <erbenson@alaska.net>
Date: Mon, 7 Aug 2000 12:37:21 -0800
Message-id: <20000807123721.I1645@plato.local.lan>
In-reply-to: <20000807040519.A521@calico.local>; from egm2@jps.net on Mon, Aug 07, 2000 at 04:05:19AM -0700
References: <Pine.LNX.4.21.0008061558470.29722-100000@trotter.user-error.net> <20000807040519.A521@calico.local>

On Mon, Aug 07, 2000 at 04:05:19AM -0700, Eric G . Miller wrote:
> You're denying everyone and allowing no one.  There's a good reason you
> can't connect ;).  In /etc/hosts.allow, you could put:

no he is not, true there is nothing in hosts.allow, but all he has in
hosts.deny is ALL: PARANOID which is debian default, this does NOT
mean deny all, it means deny anyone whose hostname != ip-address and
ip-address != hostname.  thats all.  

> ALL: LOCAL

this won't solve the problem i don't think.

> However, you shouldn't be running sshd from inetd -- it's too slow.  If
> you aren't running ssh from inetd, then you're problem is elsewhere.
> Maybe check /etc/ssh/*_config ?

no sshd even when run as a daemon checks hosts.{allow,deny} on its
own.  its compiled with tcpwrappers. 

-- 
Ethan Benson
http://www.alaska.net/~erbenson/

Attachment: pgpPMQaeZJbME.pgp
Description: PGP signature

Reply to:

References:
- hosts.allow/hosts.deny question
  - From: Raphael Crawford-Marks <raphaelc@user-error.net>
- Re: hosts.allow/hosts.deny question
  - From: "Eric G . Miller" <egm2@jps.net>

Prev by Date: Re: displaying binary files
Next by Date: Using verp with Debian's smartlist package
Previous by thread: Re: hosts.allow/hosts.deny question
Next by thread: Can't install
Index(es):
- Date
- Thread