At 09:25 AM 09/07/2000 -0400, you wrote:
>Hi all.
>
>I'm setting up a new server (RH6.2), and I loaded OpenSSH 2.2.0 from
>rpms. Worked fine. In the process of hardening the server I ran the
>Bastille-Linux script (pretty cool IMHO). Bastille did something quite
>cool, and I can't figure out how it did it. It set up sshd to use
>tcp-wrappers. How did it do that? I've looked in the sshd docs, checked
>the OpenSSH web site and tried reading the Bastille source, but I can't
>figure it out. There doesn't seem to be an sshd line in /etc/inetd.conf,
>but hosts.deny and hosts.allow work like they should for sshd.
>
>I'm happy about the outcome, but it bugs me that I can't figure out how
>I'd set up Opensshd to use wrappers without Bastille. Can anybody help me
>out?
When I've built ssh "from scratch" I got TCP Wrappers support by adding a
pointer to the appropriate library on the "configure" command line, as:
./configure --with-libwrap=/usr/lib/
where the directory name is derived from, for instance:
[root]# whereis libwrap
libwrap: /usr/lib/libwrap.a
After that I just added "sshd" to /etc/hosts.allow, etc. (I might have had
to add the full path as: /usr/local/sbin/sshd)
- Mike
----------
Michael Hannon [EMAIL PROTECTED] (Internet)
Dept. of Physics
University of California ucdhep::mike (42385::mike) (HEPnet)
Davis, CA 95616-8677 530.752.4966 (Voice) 530.752.4717 (FAX)
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
