Re: ssh2.011 and inetd on Solaris 2.5

Wed, 3 Feb 1999 22:24:38 -0500 

Alex,

Yes, I did, from Sami Lehtinen (sp?) at SSH.  The solution for getting
tcp_wrappers to "see" ssh connections is to use the "-i' switch after
in the inetd.conf file.  Thus the config becomes very simply:

ssh2    stream  tcp     nowait  root    /usr/etc/tcpd
/usr/sbin/sshd2 -i

This is actually found in the sshd man page, but I didn't notice it at
first.  after setting the switch, tcp_wrappers & ssh are happy together.
unfortunately, I heven't figured out why it hangs on logout under Sol2.5.

Chris

         ###############################################################
         #                      Chris Vandersip                        #
         #        Computer Research Specialist/Asst. Sysadmin          #
         #                    Dept. of Meteorology                     #
         #                  Florida State University                   #
         #          [EMAIL PROTECTED]   (850)644-2522                #
         ###############################################################

On Wed, 3 Feb 1999, Alexey A. Morozov wrote:

> Chris,
> 
> I have found your posting regarding ssh and tcp wrappers to
> comp.security.ssh using dejanews.  I was wondering if you ever got a
> responce.
> 
> Sincerely,
> Alex.
> 
> In article <>,
>   [EMAIL PROTECTED] (C. Vandersip) wrote:
> > Greetings John,
> > 
> > First, let me say thanks for your well-written ssh installation
> > documentation.
> > 
> > My first problem (and the two might be related) deals with
> > tcp_wrappers/ssh2.0.11 compatibility.  Tcp_wrappers is not logging the
> ssh
> > connections.  I compiled ssh using --with-libwrap and I've edited
> > inetd.conf to include the following:
> > 
> > #
> > ssh2    stream  tcp     nowait  root    /usr/etc/tcpd
> > /usr/sbin/sshd2
> > #
> > 
> > Afterwards, I did a "kill -HUP" on inetd. 
> > 
> > I basically followed the ftp & telnet structure here, since I could not
> > find any specific config info anywhere regarding tcp_wrappers.  Is there
> a
> > problem with this format, and is it causing the "nonlogging" by
> > tcp_wrappers? 
> > 
> > Second, each time I exit a ssh session, it hangs on "logout", creating a
> > defunct process on the remote machine.  I've read that there might be
> > problems (bugs?) in ssh2.x.x that cause this when compiled with libwrap.
> > Is this the case?
> > 
> > Any help is much appreciated.
> > 
> > Chris
> 
>

Reply via email to