|
I'm using tcprapper on Linux box.
Can I control login-user by hosts.allow file?
CASE 1. user@host
[hosts.allow]
in.telnetd: [EMAIL PROTECTED]
[hosts.deny]
ALL:ALL
[my test result]
1.check with tcpdmatch [sun:/usr/sbin] tcpdmatch in.telnetd [EMAIL PROTECTED]
client: address
141.12.12.8
client: username sec server: process in.telnetd matched: /etc/hosts.allow line 7 access: granted [sun:/usr/sbin] tcpdmatch in.telnetd [EMAIL PROTECTED]
client: address
141.12.12.8
client: username sec2 server: process in.telnetd matched: /etc/hosts.deny line 10 access: denied 2.login from 141.12.12.8 But any user can't
access sun from 141.12.12.8 .
------------------------------------------------------------------------------------
CASE 2 host
[hosts.allow]
in.telnetd: 141.12.12.8
[hosts.deny]
ALL:ALL
[my test result]
1.check with tcpdmatch
[sun:/usr/sbin] tcpdmatch in.telnetd [EMAIL PROTECTED]
client: address
141.12.12.8
client: username sec server: process in.telnetd matched: /etc/hosts.allow line 7 access: granted [sun:/usr/sbin] tcpdmatch in.telnetd [EMAIL PROTECTED]
client: address
141.12.12.8
client: username sec2 server: process in.telnetd matched: /etc/hosts.allow line 7 access: granted 2.login from 141.12.12.8
In this case all
user can access sun from 141.12.12.8 My Conclusion:
Tcprapper can control the access of host/IP
but
can't control the access of the user.
Is that right?
Is there anyone who knows about that?
If there, please answer to me
|
- Re: TCPRAPPER & hosts.allow... Sun Young Geun\(선영근\)
