Package: libwrap0 Version: 7.6.dbs-11 Severity: grave Justification: renders package unusable
$ /usr/sbin/tcpdchk -v Using network configuration file: /etc/inetd.conf >>> Rule /etc/hosts.allow line 15: daemons: SSHD clients: ALL access: granted >>> Rule /etc/hosts.deny line 20: daemons: ALL clients: ALL EXCEPT 127.0.0.1 access: denied The above are the only rules in effect. $ /usr/sbin/tcpdmatch vnc 127.0.0.1 warning: vnc: no such process name in /etc/inetd.conf client: address 127.0.0.1 server: process vnc access: granted So far so good... the execption in hosts.deny should cause this one to be allowed. $ /usr/sbin/tcpdmatch vnc 192.168.10.178 warning: vnc: no such process name in /etc/inetd.conf client: address 192.168.10.178 server: process vnc access: granted Why is this granted? It shouldn't be. The same is true if the exception is removed: $ /usr/sbin/tcpdchk -v Using network configuration file: /etc/inetd.conf >>> Rule /etc/hosts.allow line 15: daemons: SSHD clients: ALL access: granted >>> Rule /etc/hosts.deny line 21: daemons: ALL clients: ALL access: denied $ /usr/sbin/tcpdmatch vnc 192.168.10.178 warning: vnc: no such process name in /etc/inetd.conf client: address 192.168.10.178 server: process vnc access: granted Still access granted. However, moving back to the version of libwrap0 in stable (7.6.dbs-8) results in: $ /usr/sbin/tcpdmatch vnc 192.168.10.178 warning: vnc: no such process name in /etc/inetd.conf client: address 192.168.10.178 server: process vnc matched: /etc/hosts.deny line 21 access: denied -- System Information: Debian Release: 4.0 APT prefers testing APT policy: (900, 'testing'), (400, 'stable'), (300, 'unstable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-3-k7 Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1) Versions of packages libwrap0 depends on: ii libc6 2.3.6.ds1-8 GNU C Library: Shared libraries Versions of packages libwrap0 recommends: ii tcpd 7.6.dbs-11 Wietse Venema's TCP wrapper utilit -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
