By default, support for TCP wrappers was removed from OpenSSH, unless
it is compiled with the proper option. This seems to be indeed the case
for OI's sshd:
# ldd /usr/lib/ssh/sshd
libwrap.so.1 => /usr/lib/64/libwrap.so.1
However, after setting "/etc/hosts.deny" to "ALL: ALL" and
"/etc/hosts.allow" to a single line "sendmail: localhost",
sshd still accepts incoming connections from other hosts,
whereas such incoming SSH connections should be blocked by
the TCP wrappers.
Any idea?
_______________________________________________
openindiana-discuss mailing list
[email protected]
https://openindiana.org/mailman/listinfo/openindiana-discuss
