Re: sshd appears to not be consulting /etc/hosts.allow and /etc/hosts.deny for access control, is this a known issue?

To: christos%astron.com@localhost (Christos Zoulas), current-users%netbsd.org@localhost
Subject: Re: sshd appears to not be consulting /etc/hosts.allow and /etc/hosts.deny for access control, is this a known issue?
From: Brian Buhrow <buhrow%nfbcal.org@localhost>
Date: Sun, 12 Jan 2025 08:29:04 -0800

	Hello.  Following up on this thread, sshd-session was not utilizing libwrap or libblocklist
at all after the ssh-9.9 merge.  Based on suggested patches from Greg Woods, I committed fixes
to sshd-session.c so that it now checks host_access privileges for both "sshd" and
"sshd-session" rules in /etc/hosts.* files.  This has been tested on a number of amd64 systems.
As Greg suggested, I also committed comments to doc/3RDPARTY so folks will know that access
control is now in sshd-sessionn and not sshd itself.

Thank you Greg for the bulk of the fix.
-Brian

References:
- Re: sshd appears to not be consulting /etc/hosts.allow and /etc/hosts.deny for access control, is this a known issue?
  - From: Christos Zoulas

Prev by Date: daily CVS update output
Next by Date: daily CVS update output
Previous by Thread: Re: sshd appears to not be consulting /etc/hosts.allow and /etc/hosts.deny for access control, is this a known issue?
Next by Thread: proc: table is full & process detected outside of its chroot
Indexes:

Home | Main Index | Thread Index | Old Index