[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: problem with sshd 1.2.27

To: "James J. Lippard" <lippard@discord.org>
Subject: Re: problem with sshd 1.2.27
From: Brad <brad@openbsd.org>
Date: Thu, 10 Jun 1999 14:46:50 -0400 (EDT)
Cc: tech@openbsd.org

Thats the way TCP Wrappers works, by default it allows all hosts to
connect to all services being wrapped. The ssh port before 1.2.27 didnt
use TCP Wrappers by default, but with 1.2.27 it does.

// Brad

>I don't know if this is a problem in general or with the OpenBSD port, but
>some behavior has apparently changed recently with libwrap...
>
>It is now the case that if you have a hosts.allow that lists specific
>hosts allowed to connect via ssh, ANY host can connect with ssh--unless
>you also have a hosts.deny that has an explicit "sshd: ALL" in it.
>
>Jim Lippard       lippard@discord.org       http://www.discord.org/
>Unsolicited bulk email charge:   $500/message.   Don't send me any.
>PGP Fingerprint: 0C1F FE18 D311 1792 5EA8  43C8 7AD2 B485 DE75 841C

References:
- problem with sshd 1.2.27
  - From: "James J. Lippard" <lippard@discord.org>

Prev by Date: problem with sshd 1.2.27
Next by Date: Re: problem with sshd 1.2.27
Prev by thread: problem with sshd 1.2.27
Next by thread: Re: problem with sshd 1.2.27
Index(es):
- Date
- Thread