[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: ssh: "connection refused by tcp wrapper"

On Sat, Apr 19, 2003 at 01:09:52PM -0400, Kevin McKinley wrote:
> On Sat, 19 Apr 2003 12:41:56 -0400
> Soren Andersen <somian@adelphia.net> wrote:
> 
> > The thing that probably derailed my own analysis is that I probably
> > vaguely thought I recalled that sshd provides its own security /
> > authentication so is not generally run under inetd, so I THOUGHT it
> > wouldn't have anything to do with the hosts.{allow,deny} files. Clearly
> > there's something I don't understand yet about all that.
> 
> If sshd is run as a daemon it doesn't look at hosts.{allow,deny}. If you run
> it as an inetd service, it does.
> 

# ldd /usr/sbin/sshd
        libwrap.so.0 => /lib/libwrap.so.0 (0x40017000)
        libpam.so.0 => /lib/libpam.so.0 (0x40020000)
        libdl.so.2 => /lib/libdl.so.2 (0x40028000)
        libutil.so.1 => /lib/libutil.so.1 (0x4002b000)
        libz.so.1 => /lib/libz.so.1 (0x4002e000)
        libnsl.so.1 => /lib/libnsl.so.1 (0x4003b000)
        libcrypto.so.0.9.7 => /usr/lib/i586/libcrypto.so.0.9.7
(0x4004e000)
        libc.so.6 => /lib/libc.so.6 (0x4013e000)
        /lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)

As sshd is linked against libwrap.so it does not need anything from
inetd.

Philippe
Reply to: