Re: SSH attack
On Tue, 4 Oct 2005, Henrique de Moraes Holschuh wrote:
> On Mon, 03 Oct 2005, Marty wrote:
> > Correction -- it's in the hosts.deny man page. As others have already
> > pointed out, sshd must be configured to start via inetd.
>
> Must it? It uses tcp-wrappers natively, it should not need inetd for
> ANYTHING concerning /etc/hosts.allow or /etc/hosts.deny.
simple test ...
( use your positive or negative logic equivalents for these files )
/etc/hosts.deny
ALL : ALL
and try to make your ssh work .. when yu give yp ..
you'll find that you will need to have
/etc/hosts.allow
sshd : 192.168.123.456
restart the inetd or sshd as needed
whether inetd is good or bad is a separate issue
c ya
alvin
Reply to: