Hello, On Tue, 23 Sep 2008, [EMAIL PROTECTED] wrote: > It seems that sshd looks if the client is given permissions > (IP-based) in hosts.allow, and then checks for further > authentication. > > What I required was, if the key is found in the > ~/.ssh/authorized_keys file, then, totally ignore /etc/hosts.allow > entry.. (if an entry for that particular IP is there...) or, in > other words, grant access.
/etc/hosts.allow is looked at by the "tcp wrapper" library which decides whether on not a tcp connection should be allowed based on the filters provided. Authentication comes much later. If you want a host to be allowed to attempt authentication it _must_ pass the tcp wrapper filters. What you are asking is like asking the watchman at the main gate to let you in depending on whether your key works in your office door. :-) Regards, Kapil. -- _______________________________________________ To unsubscribe, email [EMAIL PROTECTED] with "unsubscribe <password> <address>" in the subject or body of the message. http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
