/etc/hosts.allow & /etc/hosts.deny

/etc/hosts.allow & /etc/hosts.deny

[Chris _]

Are these files implemented and if so, what is the format?  I had hosts.deny
sort working but as soon as I put anything in hosts.allow any host can
access the service.

My hosts.deny was...
---
#deny these hosts
ALL: ALL
---

My hosts.allow was...
---
sshd: 192.168.1.100: ALLOW

Nothing seems to work.  I tried tons of combinations with no results.

tia



_________________________________________________________________
Join the worldÂ’s largest e-mail service with MSN Hotmail. 
http://www.hotmail.com


--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Bug reporting:         http://cygwin.com/bugs.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

Re: /etc/hosts.allow & /etc/hosts.deny

[Prentis Brooks]

For host.allow to work for ssh,  you need to have tcp wrappers installed on 
the system.
also, the format for the hosts.allow file is 

service: host or IP list
so in your case, it should read
sshd: 192.168.1.100

Also, you need to update your services file to associate sshd with port 22

If you do a search for tcp wrappers on the mailing list you will find a 
conversation between myself, Corrina, and Mumit Khan (I think).  Mumit had 
provided a patch to tcp_wrappers version 7.6 which will be included in the 
next revision of tcp wrappers, so I recommend you use his patch.


On Thursday 07 February 2002 08:17 am, Chris _ wrote:
> Are these files implemented and if so, what is the format?  I had
> hosts.deny sort working but as soon as I put anything in hosts.allow any
> host can access the service.
>
> My hosts.deny was...
> ---
> #deny these hosts
> ALL: ALL
> ---
>
> My hosts.allow was...
> ---
> sshd: 192.168.1.100: ALLOW
>
> Nothing seems to work.  I tried tons of combinations with no results.
>
> tia
>
>
>
> _________________________________________________________________
> Join the worldÂ’s largest e-mail service with MSN Hotmail.
> http://www.hotmail.com

-- 
Prentis Brooks	| prentis@aol.net | 703-265-0914 | AIM: PrentisBrooks
Senior System Administrator - Web Infrastructure & Security

       A knight is sworn to valor.  His heart knows only virtue.  His blade
       defends the helpless.  His word speaks only truth.  His wrath undoes
       the wicked. - the old code of Bowen, last of the dragonslayers

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Bug reporting:         http://cygwin.com/bugs.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

Re: /etc/hosts.allow & /etc/hosts.deny

[Corinna Vinschen]

On Thu, Feb 07, 2002 at 09:00:23AM -0500, Prentis Brooks wrote:
> For host.allow to work for ssh,  you need to have tcp wrappers installed on 
> the system.
> also, the format for the hosts.allow file is 
> 
> service: host or IP list
> so in your case, it should read
> sshd: 192.168.1.100
> 
> Also, you need to update your services file to associate sshd with port 22
> 
> If you do a search for tcp wrappers on the mailing list you will find a 
> conversation between myself, Corrina, and Mumit Khan (I think).  Mumit had 
> provided a patch to tcp_wrappers version 7.6 which will be included in the 
> next revision of tcp wrappers, so I recommend you use his patch.

Anybody here who's willing to maintain tcp_wrappers for Cygwin?

If so, take a look on http://cygwin.com/setup.html how to
contribute and maintain a package and don't give up too quickly
if it's not correctly packed in the first run!

Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Developer                                mailto:cygwin@cygwin.com
Red Hat, Inc.

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Bug reporting:         http://cygwin.com/bugs.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

Re: /etc/hosts.allow & /etc/hosts.deny

[Prentis Brooks]

I thought I had already volunteered :)

I will look over the setup.html to see if I missed a step and will get to work

On Thursday 07 February 2002 10:10 am, Corinna Vinschen wrote:
> On Thu, Feb 07, 2002 at 09:00:23AM -0500, Prentis Brooks wrote:
> > For host.allow to work for ssh,  you need to have tcp wrappers installed
> > on the system.
> > also, the format for the hosts.allow file is
> >
> > service: host or IP list
> > so in your case, it should read
> > sshd: 192.168.1.100
> >
> > Also, you need to update your services file to associate sshd with port
> > 22
> >
> > If you do a search for tcp wrappers on the mailing list you will find a
> > conversation between myself, Corrina, and Mumit Khan (I think).  Mumit
> > had provided a patch to tcp_wrappers version 7.6 which will be included
> > in the next revision of tcp wrappers, so I recommend you use his patch.
>
> Anybody here who's willing to maintain tcp_wrappers for Cygwin?
>
> If so, take a look on http://cygwin.com/setup.html how to
> contribute and maintain a package and don't give up too quickly
> if it's not correctly packed in the first run!
>
> Corinna

-- 
Prentis Brooks	| prentis@aol.net | 703-265-0914 | AIM: PrentisBrooks
Senior System Administrator - Web Infrastructure & Security

       A knight is sworn to valor.  His heart knows only virtue.  His blade
       defends the helpless.  His word speaks only truth.  His wrath undoes
       the wicked. - the old code of Bowen, last of the dragonslayers

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Bug reporting:         http://cygwin.com/bugs.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

Re: /etc/hosts.allow & /etc/hosts.deny

[Corinna Vinschen]

On Thu, Feb 07, 2002 at 11:12:17AM -0500, Prentis Brooks wrote:
> I thought I had already volunteered :)
> 
> I will look over the setup.html to see if I missed a step and will get to work

Prentice,

I'm really sorry but I only recalled that "somebody" once volunteered
but I forgot your name *blush*.

Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Developer                                mailto:cygwin@cygwin.com
Red Hat, Inc.

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Bug reporting:         http://cygwin.com/bugs.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

Re: /etc/hosts.allow & /etc/hosts.deny

[Prentis Brooks]

Not a problem, as I obviously did not follow through ;)

Building up the distro now, should have it available this weekend, I may not 
make it in today as I have a full schedule.

On Thursday 07 February 2002 02:52 pm, you wrote:
> On Thu, Feb 07, 2002 at 11:12:17AM -0500, Prentis Brooks wrote:
> > I thought I had already volunteered :)
> >
> > I will look over the setup.html to see if I missed a step and will get to
> > work
>
> Prentice,
>
> I'm really sorry but I only recalled that "somebody" once volunteered
> but I forgot your name *blush*.
>
> Corinna

-- 
Prentis Brooks	| prentis@aol.net | 703-265-0914 | AIM: PrentisBrooks
Senior System Administrator - Web Infrastructure & Security

       A knight is sworn to valor.  His heart knows only virtue.  His blade
       defends the helpless.  His word speaks only truth.  His wrath undoes
       the wicked. - the old code of Bowen, last of the dragonslayers

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Bug reporting:         http://cygwin.com/bugs.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/