AllowHosts / DenyHosts
Yuliy Minchev
yuliy at mobiltel.bg
Wed Feb 28 22:42:59 EST 2001
re
> > There are some old (or exotic) systems which haven't nor ip
> > filtering capabilities, nor tcp-wrapper. So it would be a good
> > think if OpenSSH can handle Allow/Deny clauses.
>
> tcp-wrappers is _very_ portable. What platforms that OpenSSH supports
> are not supported by TCP wrappers?
In fact you are right. But if I want just to run OpenSSH on some hosts
and to control access - why should I need to install yet another program
(tcp-wrapper) and then to track yet another program (tcp-wrapper) for new
bugs discovered?
It's enough that you need zlib/openssl/egd to install OpenSSH on some
machines.
It's a good thing that in 2.5 there is an internal way to gather entropy.
Someone said a few weeks ago, he wants to see OpenSSH capable to compile
without you have installed openssl and zlib.
I think it'll be a good to have all the things needed for OpenSSH to work
- 'out of the box'. I mean - you get the source, compile it and that's
enough.
yuliy
--
Yuliy Minchev,
UNIX Administrator
More information about the openssh-unix-dev
mailing list