[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: problem with sshd 1.2.27

To: tech@openbsd.org
Subject: Re: problem with sshd 1.2.27
From: David Terrell <dbt@meat.net>
Date: Thu, 10 Jun 1999 11:48:18 -0700
References: <Pine.BSO.4.10.9906101057160.16192-100000@leviathan.discord.org>

On Thu, Jun 10, 1999 at 10:58:51AM -0700, James J. Lippard wrote:
> I don't know if this is a problem in general or with the OpenBSD port, but
> some behavior has apparently changed recently with libwrap...
> 
> It is now the case that if you have a hosts.allow that lists specific
> hosts allowed to connect via ssh, ANY host can connect with ssh--unless
> you also have a hosts.deny that has an explicit "sshd: ALL" in it.

tcp_wrappers always defaults to allow unless you have a deny rule that
matches (service: ALL [ : DENY ] or ALL: ALL [ : DENY ] in hosts.deny).

-- 
David Terrell
dbt@meat.net, dbt@nebcorp.com    I may or may not be speaking for Nebcorp,
http://wwn.nebcorp.com/~dbt/         but Nebcorp has spoken for you.

References:
- problem with sshd 1.2.27
  - From: "James J. Lippard" <lippard@discord.org>
- problem with sshd 1.2.27
  - From: "James J. Lippard" <lippard@discord.org>

Prev by Date: Re: problem with sshd 1.2.27
Next by Date: dhcp and bind 8
Prev by thread: Re: problem with sshd 1.2.27
Next by thread: dhcp and bind 8
Index(es):
- Date
- Thread