Skip to main content

Thread: Denyhosts/sshd compatibility issue (?)

-

on website denyhosts project at: http://denyhosts.sourceforge.net/ssh_config.html

html code:
testing ssh configuration  in order take advantage of denyhosts, must ensure sshd server has been compiled w/ tcp_wrappers support. on linux distros, sshd has been compiled tcp_wrappers enabled. if not sure, simple test follows:       1. login, root, linux system containing sshd server.     2. edit file, /etc/hosts.deny     3. add following:        $ sshd: 127.0.0.1     4. save file     5. attempt connect local sshd server:        $ ssh localhost     6. should see following ssh error message:        ssh_exchange_identification: connection closed remote host          if above error message displayed, sshd has been compiled tcp_wrappers          if client connects sshd server, sshd has not been compiled tcp_wrappers       7. edit file, /etc/hosts.deny     8. remove line added earlier (eg. sshd: 127.0.0.1)     9. save file
according sshd server (openssh_5.1p1 debian-5ubuntu1) not benefit using denyhosts. after testing have found denyhosts repositories not functioning advertised either.

how all?

that package depends on tcpd , support tcpd in openssh-server

put in tcpd's /etc/hosts.deny test:


sshd: 127.0.0.0/8

stop ssh server , re-start one-off session in debug mode:


/etc/init.d/ssh stop
/usr/sbin/sshd -dd

in window try connect. go sshd window , read output. sshd stop once connection closed , you'll have run again each test.

should see this:
debug1: connection refused tcp wrapper

note of above done on same machine.

ps. works me openssh_5.1p1 debian-6ubuntu1, openssl 0.9.8g 19 oct 2007 on karmic beta on amd64.


Forum The Ubuntu Forum Community Ubuntu Specialised Support Security [all variants] Denyhosts/sshd compatibility issue (?)


Ubuntu

Comments

Post a Comment

Popular posts from this blog

opencv3, tbb and rasp pi 2 - Raspberry Pi Forums

-
Image
has installed opencv 3.0.0 tbb enabled on latest rasperian on pi 2? followed guide here viewtopic.php?f=28&t=110025&p=761255&hi ... v3#p761255 differences made enable tbb via cmake... added build , tbb options shown.. cmake -d cmake_build_type=release -d build_tbb=on -d with_tbb=on -d cmake_install_prefix=$(python3 -c "import sys; print(sys.prefix)") -d python_executable=$(which python3) .. patched current, dependencies installed far can tell.. cmake reports going install , old version of tbb... -- use tbb: yes (ver 4.1 interface 6102) make process fails linking problem don't understand fully, [ 66%] built target opencv_features2d scanning dependencies of target opencv_test_flann ../../lib/libopencv_imgproc.so.3.0.0: undefined reference `tbb::task_group_context::cancel_group_execution()' ../../lib/libopencv_imgproc.so.3.0.0: undefined reference `tbb::interface5::internal::task_base::destroy(tbb::task&)
Read more

small ethernet problem - Raspberry Pi Forums

-
hello, after conventional installation raspbian noobs v 1.4 raspberry pi 2 . how can configure internet connection on raspberry me download apt. (my ethernet cable connected directly ethernet switch (i'm @ university)) attached configuration of pc internet connection. http://i.imgur.com/budyoeb.jpg thank much, google configuring rpi static ip address. use same ip numbers see on pc. not try have both pc , rpi connected network @ same time. raspberrypi
Read more

Multithumb configuration params not working? - Joomla! Forum - community, help and support

-
hi, i've installed multithumb 1.1 on joomla 1.011 site , works fine in basic set-up (and jce-editor). except when try tweaking mambot params, things stop working. specifically: if use "only in these categories" setting , fill in categoryname, e.g. "news", pop-ups/thumbnails stop working, categories, including "news". if use "not in these categories" these categories still use pop-ups. if select "use thumbnails" "no" not no thumbnails no pop-ups anymore. so way use multithumb selectively use optioni "apply content {multithumb}", bit cumbersome. there more people having these issues? hi bikey, i having issues bit different - yet same.  saying have way set configuration plug-in.  not know how find cong this.  if can maybe read posting - don't bore process.  jce editor - have not installed - still using default html editor - cant recall name.  why not see config file? anyway - find if use static page , pass com
Read more