[Linux-disciples] Entry in hosts.deny not blocked
Adam Rosi-Kessel
adam at rosi-kessel.org
Wed Dec 8 08:09:25 EST 2004
Here's your answer:
Configure OpenSSH to use TCP-Wrappers/inetd super server
http://www.faqs.org/docs/securing/chap15sec123.html
On Tue, Dec 07, 2004 at 10:41:47PM -0500, Stephen R Laniel wrote:
> I put an IP address in /etc/hosts.deny, and it doesn't get
> blocked. The line reads
>
> ALL: 140.247.60.120
>
> which is the IP address of our beloved bostoncoop.net. If I
> ssh to bostoncoop.net, then try to ssh back to laniels.org,
> I get through fine; I shouldn't be able to, unless I
> misunderstand things.
>
> I don't quite get the interaction between inetd, tcpd, and
> those daemons that don't run under inetd (including ssh, I
> gather). In any case, I thought it would Just Work: you
> include a host to deny in /etc/hosts.deny and it's denied.
> Is this not so?
>
> --
> ``A mysterious voice on the sound track advises David to
> escape. He is supplied with a bar of soap, half a loaf
> of bread, a compass, and an envelope not to be opened
> until he gets to Denmark or finds Carmen Sandiego,
> whichever comes first. Sorry about that.''
> -Roger Ebert, http://shorl.com/dykipydrasana
>
> _______________________________________________
> Linux-disciples mailing list
> Linux-disciples at lists.bostoncoop.net
> http://lists.bostoncoop.net/mailman/listinfo/linux-disciples
--
Adam Rosi-Kessel
http://adam.rosi-kessel.org
More information about the Linux-disciples
mailing list