Hi Jim,
Check the /etc/hosts.allow and /etc/hosts.deny files with this command.
$ tcpdchk -v
It will display everything in your two file and comments about problems.
If it complains that sshd is not in your /etc/inetd.conf file this is
normal is you start it from /etc/rc2.d. It might also complain about
portmap also. I've found this to be normal also, but anything else would
indicate problems.
Carl
On 16-May-00 Jim Ennis wrote:
> Hello,
>
> I have installed tcp_wrappers on a Solaris 7 box and I have installed
> ssh
> with the with-libwrap option. I can't seem to get ssh to check the
> hosts.allow and host.deny files to prevent me from connecting from a
> non-authorized segment. As far as I can tell, sshd2 is not using any of
> the wrappers support.
>
> Will wrappers support work when the program is run as a stand alone
> daemon (not run from inetd)?
>
> I have checked the sshd2 binary and the hosts information seems to be
> in
> the binary (using the strings command).
>
> My /etc/hosts.allow file looks like:
>
> sshd2: 132.170.249.* : allow
>
> My /etc/hosts.deny file looks like:
>
> sshd2: ALL: (/local/bin/safe_finger -l @%h | /usr/bin/mailx -s %d-%h
> root)
> &
>
> The daemon runs from /etc/rc2.d as /usr/sbin/sshd2
>
> Any ideas or tips?
>
> thanks in advance.
>
>
> Jim Ennis | [EMAIL PROTECTED]
> Systems Administrator | (407) 823-1701 | Fax: (407)
> 823-5476
> University of Central Florida | Murphy's paradox:
> | Doing it the hard way is always
> easier.
------------------------------------------------------------------------
E-Mail: Carl J. Nobile <[EMAIL PROTECTED]>
Date: 17-May-00 Phone: 315-453-2912 Ex. 5336
Time: 11:20:19 Fax: 315-453-3052
Software Engineering Group -- AppliedTheory Corp.
224 Harrison Street, 6th Floor, Syracuse, NY 13202
------------------------------------------------------------------------
