Lists

Open Menu Close Menu

Terms and Conditions
Lists hosted on this site
Email the Postmaster
Tips for posting to public mailing lists

[Fed-Talk] TCP Wrappers

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Fed-Talk] TCP Wrappers

Subject: [Fed-Talk] TCP Wrappers
From: Jerry Roy <email@hidden>
Date: Fri, 27 Mar 2009 13:06:00 -0400
Thread-topic: TCP Wrappers

Title: TCP Wrappers

I have a 10.5.6 desktop system attached to the DREN and it gets hammered every night by brute force ssh attacks. I’ve edited the sshd_config to enable login only by two local users and have hosts.allow edited to include several networks from which the two users might approach. Hosts.deny is fully populated yet access to the machine is disallowed upon authentication...that is to say TCPwrappers is not functioning properly. My /System/Library/LaunchDaemons/ssh.plist is as follows:
c<plist version="1.0">
<dict>
        <key>Label</key>
        <string>com.openssh.sshd</string>
        <key>Program</key>
        <string>/usr/libexec/tcpd</string>
        <key>ProgramArguments</key>
        <array>
                <string>/usr/libexec/sshd-keygen-wrapper</string>
                <string>-i</string>
        <snip>
Can someone help me identify what I’m missing on this box? The exact same config works as expected on all my other boxes.
BR
Jerry

 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:

This email sent to email@hidden

Follow-Ups:
- Re: [Fed-Talk] TCP Wrappers
  - From: Allan Marcus <email@hidden>

Prev by Date: Re: [Fed-Talk] Cac not being read correctly
Next by Date: Re: [Fed-Talk] Cac not being read correctly
Previous by thread: Re: [Fed-Talk] Smart Cards: tokens Cache Explained
Next by thread: Re: [Fed-Talk] TCP Wrappers
Index(es):
- Date
- Thread