Feature disappeared?
Gert Doering
gert at greenie.muc.de
Mon Oct 30 22:58:00 EST 2000
Hi,
On Mon, Oct 30, 2000 at 01:55:29PM +0200, Pekka Savola wrote:
> > > I nagged about AllowHosts _a lot_ but eventually patched TCP Wrappers so
> > > that it can take more complex host definitions too (like *isdn1*.isp.com).
> > What's your gripe with AllowHosts?
> That it was dropped in OpenSSH.
Ah! Now I understand (I understood that you had been opposing AllowHosts,
which is just to the contrary...).
> As for the reasons of griping, regular TCP wrappers are rather inflexible.
> Here's an example. ISP might define its address pools like
>
> blahlah12311.newyork5.isp.com
> blahlah12311.newyork6.isp.com
> blahlah12311.newyork7.isp.com
> blahlah12311.newyork8.isp.com
> blahlah12311.newyork9.isp.com
> [ etc. the point is newyorkX ]
>
> With regular TCP Wrappers, the only chance you have to define these,
> really, are:
Yes. I fully understand :)
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany gert at greenie.muc.de
fax: +49-89-35655025 gert.doering at physik.tu-muenchen.de
More information about the openssh-unix-dev
mailing list