Re: hosts.(allow|deny)

To: debian-user@lists.debian.org
Subject: Re: hosts.(allow|deny)
From: Hugh Saunders <hugh@mjr.org>
Date: Fri, 7 Mar 2003 20:01:14 +0000
Message-id: <[🔎] 20030307200114.GA24524@wacka.mjr.org>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 50345.10.10.10.7.1047059014.squirrel@webmail.linuxpowered.net>
References: <[🔎] 20030307161324.GD31391@wacka.mjr.org> <[🔎] 50345.10.10.10.7.1047059014.squirrel@webmail.linuxpowered.net>

On Fri, Mar 07, 2003 at 09:43:34AM -0800, nate wrote:
> Hugh Saunders said:
> 
> > But i thought it would be more secure to put ALL : ALL in hosts.deny and
> > then in.sshd : ALL in hosts.allow. This dosnt work[ssh connections are
> > refused], how do i specify that i want all hosts to be able to connect to
> > port 22?
> 
> 
> hosts.allow/deny can be tricky(one reason I don't use it), your situation
> should be fixed by changing in.sshd to sshd. Check  /var/log/daemon.log
> for the name of the daemon(s). You should see reject messages for the
> sshd service.
There is no reference to ssh at all in daemon.log
But.. I changed in.sshd to sshd and it now works.

> another reason I don't use it is I prefer firewalls over it.
Hmmm i guess iptables would be better but i dont speak iptables yet and
hosts seemed like a quick fix and as with most quik fixes, it probably
isnt the best way of doing things.

thanks for help

hugh

Reply to:

Follow-Ups:
- Re: hosts.(allow|deny)
  - From: "nate" <debian-user@aphroland.org>
- Re: hosts.(allow|deny)
  - From: Will Trillich <will@serensoft.com>
- Re: hosts.(allow|deny)
  - From: Andreas Happe <andreashappe@gmx.net>

References:
- hosts.(allow|deny)
  - From: Hugh Saunders <hugh@mjr.org>
- Re: hosts.(allow|deny)
  - From: "nate" <debian-user@aphroland.org>

Prev by Date: RE: howto verify burn?
Next by Date: Re: formail help
Previous by thread: Re: hosts.(allow|deny)
Next by thread: Re: hosts.(allow|deny)
Index(es):
- Date
- Thread