Re: sshd and hosts_access

To: debian-user@lists.debian.org
Subject: Re: sshd and hosts_access
From: Greg Norris <haphazard@kc.rr.com>
Date: Fri, 23 Aug 2002 17:10:06 -0500
Message-id: <[🔎] 20020823221006.GA31213@glitch.localdomain>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 20020823171123.GA2027@jonathan.pearce.name>
References: <[🔎] 20020823171123.GA2027@jonathan.pearce.name>

Does /etc/hosts.deny have the entry "ALL: PARANOID", or similar?  Try
changing it to "ALL EXCEPT sshd: PARANOID".  Be aware that this will
affect all ssh connections, however.

On Fri, Aug 23, 2002 at 10:11:23AM -0700, Jonathan David Pearce wrote:
> I'm running testing. A little while ago, a normal dselect update
> broke the usual behavior of my ssh sessions. I can no longer connect
> from work. I use a SOCKS proxy for ssh sessions outside my company's
> firewall. From my server logs:
> 
> Aug 23 09:56:03 syed sshd[1960]: warning: /etc/hosts.allow, line 13: host name/name mismatch: proxy-ppv1.jf.intel.com != proxy-socks.jf.intel.com
> Aug 23 09:56:03 syed sshd[1960]: refused connect from 134.134.248.17
> 
> I have in my hosts.allow:
> ALL: .intel.com
> 
> and it was working fine. I suppose the new default tcp behavior is
> more paranoid--this is good. I want to retain this behavior, except
> for this specific instance.
> 
> Any suggestions?
> 
> Sincerely,
> Jonathan

Reply to:

References:
- sshd and hosts_access
  - From: Jonathan David Pearce <jonathan@pearce.name>

Prev by Date: Re: Aptitude
Next by Date: Re: Gnome problem
Previous by thread: sshd and hosts_access
Next by thread: scsi emulation
Index(es):
- Date
- Thread