begin: Mark K. Kim <[EMAIL PROTECTED]> quote
> On Tue, 30 Oct 2001, Peter Jay Salzman wrote:
>
> > it's somewhat easier. but if so, openssh has been around long enough that
> > someone probably took the wrapper initialization code, placed the string
>
> Well, it's not necessarily a bug.
whoa! who mentioned the word "bug"? aside from you, that is. :)
> It is more convenient (from user's
> point of view) for sshd to read the tcpwrapper every time someone
> connects, but there may be security implications or other factors that may
> make the other method more favorable; also it's unnecessary performance
> delay when all the root has to do is `killall -HUP sshd` after modifying
> hosts.allow.
all good arguments. but there are plenty of apps that read their config
files dynamically. and plenty that don't.
pete
--
"You may not use the Software in connection with any site that disparages
Microsoft, MSN, MSNBC, Expedia, or their products or services ..."
-- Clause from license for FrontPage 2002
