AllowHosts / DenyHosts
Laurent Papier
papier at sdv.fr
Thu Mar 1 00:24:41 EST 2001
Markus Friedl wrote:
>
> On Wed, Feb 28, 2001 at 09:57:11AM +0100, Andreas Vetter wrote:
> > Tcp-wrappers are invoked by inetd, so when there is a DoS-attack against
> > the inetd (usually this is done port by port): game over.
>
> tcp-wrappers are not at all related to inetd.
> they only can be used with inetd. you don't
> need inetd if you want to use sshd + tcpwrappers
> since sshd uses libwrap directly.
I agree. I don't think we need a AllowHosts/DenyHosts.
tcp-wrappers compile easily even on old system (AIX 3), and do the job
just fine.
--
Laurent Papier - Admin. systeme
Sdv Plurimedia - <http://www.sdv.fr>
More information about the openssh-unix-dev
mailing list