Re: SSH attack

To: Henrique de Moraes Holschuh <hmh@debian.org>
Cc: debian-user@lists.debian.org
Subject: Re: SSH attack
From: Alvin Oga <aoga@mail.Linux-Consulting.com>
Date: Mon, 10 Oct 2005 18:33:04 -0700 (PDT)
Message-id: <[🔎] Pine.LNX.3.96.1051010183033.1538A-100000@Maggie.Linux-Consulting.com>
In-reply-to: <[🔎] 20051004031617.GD32046@khazad-dum.debian.net>


On Tue, 4 Oct 2005, Henrique de Moraes Holschuh wrote:

> On Mon, 03 Oct 2005, Marty wrote:
> > Correction -- it's in the hosts.deny man page.  As others have already
> > pointed out, sshd must be configured to start via inetd.
> 
> Must it?  It uses tcp-wrappers natively, it should not need inetd for
> ANYTHING concerning /etc/hosts.allow or /etc/hosts.deny.

simple test ... 
( use your positive or negative logic equivalents for these files )

/etc/hosts.deny
	ALL : ALL

and try to make your ssh work .. when yu give yp ..

you'll find that you will need to have

/etc/hosts.allow
	sshd : 192.168.123.456

restart the inetd or sshd as needed

whether inetd is good or bad is a separate issue

c ya
alvin

Reply to:

Follow-Ups:
- Re: SSH attack
  - From: Marty <martyb@ix.netcom.com>

References:
- Re: SSH attack
  - From: Henrique de Moraes Holschuh <hmh@debian.org>

Prev by Date: Re: how to exit from fullscreen vncviewer
Next by Date: Re: 2.6.13 breaks vga= support?
Previous by thread: Re: SSH attack
Next by thread: Re: SSH attack
Index(es):
- Date
- Thread