From owner-freebsd-questions@FreeBSD.ORG Fri Apr 18 09:15:09 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C8DF91065672 for ; Fri, 18 Apr 2008 09:15:09 +0000 (UTC) (envelope-from gary@pattersonsoftware.com) Received: from nschwmtas04p.mx.bigpond.com (nschwmtas04p.mx.bigpond.com [61.9.189.146]) by mx1.freebsd.org (Postfix) with ESMTP id 396548FC2B for ; Fri, 18 Apr 2008 09:15:08 +0000 (UTC) (envelope-from gary@pattersonsoftware.com) Received: from nschwotgx03p.mx.bigpond.com ([121.223.241.235]) by nschwmtas04p.mx.bigpond.com with ESMTP id <20080418091507.ISGP21542.nschwmtas04p.mx.bigpond.com@nschwotgx03p.mx.bigpond.com> for ; Fri, 18 Apr 2008 09:15:07 +0000 Received: from mail.pattersonsoftware.com ([121.223.241.235]) by nschwotgx03p.mx.bigpond.com with ESMTP id <20080418091506.QDWG1860.nschwotgx03p.mx.bigpond.com@mail.pattersonsoftware.com> for ; Fri, 18 Apr 2008 09:15:06 +0000 Received: from localhost (mail [192.168.111.46]) by mail.pattersonsoftware.com (Postfix) with ESMTP id 461D6536039 for ; Fri, 18 Apr 2008 19:15:06 +1000 (EST) X-Virus-Scanned: amavisd-new at pattersonsoftware.com Received: from mail.pattersonsoftware.com ([192.168.111.46]) by localhost (mail.pattersonsoftware.com [192.168.111.46]) (amavisd-new, port 10024) with ESMTP id 4mCAYrMCwP45 for ; Fri, 18 Apr 2008 19:14:52 +1000 (EST) Received: from elegia (60-242-254-180.static.tpgi.com.au [60.242.254.180]) by mail.pattersonsoftware.com (Postfix) with ESMTP id AC6B9536095 for ; Fri, 18 Apr 2008 19:14:51 +1000 (EST) Date: Fri, 18 Apr 2008 19:14:49 +1000 From: Gary Newcombe To: freebsd-questions@freebsd.org Message-Id: <20080418191449.212f43d3.gary@pattersonsoftware.com> In-Reply-To: <2tng04doovnmtkr7or9kfkb596fgjfoj1c@4ax.com> References: <2tng04doovnmtkr7or9kfkb596fgjfoj1c@4ax.com> Organization: Patterson Software X-Mailer: Sylpheed 2.4.8 (GTK+ 2.12.5; x86_64-redhat-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-RPD-ScanID: Class unknown; VirusThreatLevel unknown, RefID str=0001.0A150203.4808669B.0079,ss=1,fgs=0 Subject: Re: [SSHd] Limiting access from authorized IP's X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 18 Apr 2008 09:15:09 -0000 Hi Gilles, ssh is part of the base system, not an installed port (by default anyway) so you won't see it with pkg_info which will only list installed packages. The config file is /etc/ssh/sshd_config. To limit connections, you should be using the firewall. I do use hosts.allow too, but the firewall is your primary defence. hth, Gary On Fri, 18 Apr 2008 10:51:45 +0200 Gilles wrote: > Hello > > I have a couple of questions about running SSHd: > > 1. I'd like to limit connections from the Net only from specific IP's. > It seems like there are several ways to do it (/etc/hosts.allow, > AllowHosts/AllowUsers, TCP-wrapper, port-knocking, etc.). Which would > you recommend? > > 2. Although it's up and running, I can't find SSHd in the list of > installed apps: > > $ which sshd > > /usr/sbin/sshd > > $ pkg_info | grep -i ssh > => Nada. How come? > > Thank you. > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"