help: tcpwrappers aren't working!!
tcpwrappers don't seem to be working for cvspserver.
on host satan (64.164.47.8), i have the following wrappers:
# ########## hosts.allow #########################
ALL: localhost
ALL: 192.168.0.1 # mephisto
ALL: 192.168.0.2 # satan
ALL: 192.168.0.3 # navalle
ALL: 192.168.0.4 # lucifer
# cvspserver: 169.237.43.86 # belial.ucdavis.edu
cvspserver: 130.88.22.5 # John Levon (mpg cvs)
# ########## hosts.deny #########################
portmap: ALL
lockd: ALL
mountd: ALL
rquotad: ALL
statd: ALL
cvspserver: ALL
yet belial.ucdavis.edu can access the pserver just fine:
belial% cvs -d ':pserver:cvs-ddd@dirac.org:/usr/local/cvs' login
Logging in to :pserver:cvs-ddd@dirac.org:2401/usr/local/cvs
CVS password:
belial%
i ran inetd in debug mode, and it didn't give too much information. the
"someone" in the logs is belial.ucdavis.edu, whom i commented out of
hosts.allow, and who shouldn't be allowed since i have "cvspserver: ALL" in
hosts.deny.
satan# inetd -d
ADD : time proto=tcp, wait.max=0.40, user.group=root.(null) builtin=804d094
server=internal
ADD : time proto=udp, wait.max=0.40, user.group=root.(null) builtin=804d0a4
server=internal
ADD : ftp proto=tcp, wait.max=0.40, user.group=root.(null) builtin=0
server=/usr/sbin/tcpd
ADD : smtp proto=tcp, wait.max=0.40, user.group=mail.(null) builtin=0
server=/usr/sbin/tcpd
ADD : finger proto=tcp, wait.max=0.40, user.group=nobody.(null) builtin=0
server=/usr/sbin/tcpd
ADD : cvspserver proto=tcp, wait.max=0.40, user.group=root.(null) builtin=0
server=/usr/sbin/tcpd
someone wants cvspserver
accept, ctrl 3
2771 execl /usr/sbin/tcpd
2771 reaped, status 0
it's very important to me to be able to restrict pserver to only one or two
collaborators. i don't want anyone else accessing it.
does anyone have any ideas why tcpwrappers seem to be failing?
thanks,
pete
--
PGP Fingerprint: B9F1 6CF3 47C4 7CD8 D33E 70A9 A3B9 1945 67EA 951D
PGP Public Key: finger p@dirac.org
Reply to: