From owner-freebsd-questions  Tue Apr 30 12:40:41 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from russian-caravan.cloud9.net (russian-caravan.cloud9.net [168.100.1.4])
	by hub.freebsd.org (Postfix) with ESMTP id D148437B404
	for <FreeBSD-Questions@FreeBSD.Org>; Tue, 30 Apr 2002 12:40:23 -0700 (PDT)
Received: from earl-grey.cloud9.net (earl-grey.cloud9.net [168.100.1.1])
	by russian-caravan.cloud9.net (Postfix) with ESMTP
	id 2C59928B07; Tue, 30 Apr 2002 15:40:23 -0400 (EDT)
Date: Tue, 30 Apr 2002 15:40:23 -0400 (EDT)
From: Peter Leftwich <Hostmaster@Video2Video.Com>
X-X-Sender:  <pete@earl-grey.cloud9.net>
To: Justin Heath <jheath@theplanet.com>
Cc: FreeBSD LIST <FreeBSD-Questions@FreeBSD.Org>
Subject: Re: OpenSSH and hosts.allow
In-Reply-To: <5.1.0.14.2.20020428223215.02521ec0@mail.theplanet.com>
Message-ID: <20020430153741.M10042-100000@earl-grey.cloud9.net>
Organization: Video2Video Services - http://Www.Video2Video.Com
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

On Sun, 28 Apr 2002, Justin Heath wrote:
> Peter, I am using SSHd version OpenSSH_2.9 (FreeBSD localisations 20020307). As you can see this is not installed from the ports. I am using /etc/hosts.allow. Which is where SSHd should be looking since it is part of the base system and not a port. Thanks.

Oops, duh, I'd forgotten about that file (/etc/hosts.allow)!  Honestly,
thanks for the reminder - now I remember why sendmail isn't working
properly (yet I can telnet port 25 of my box and deliver spoofed email).

I would recommend you type `host my.domain.com` and use that IP in place of
your "0.0.0.0: allow" example.

> At 02:43 PM 4/28/2002 -0400, Peter Leftwich wrote:
> >On Sun, 28 Apr 2002, Justin Heath wrote:
> > > I am trying to set up sshd (OpenSSH) to use hosts.allow . The problem is that the rules seem to work with IP address but not host names.
> > > Example - Works: sshd: 0.0.0.0: allow
> > > Does not work: sshd: .domain.com: allow (nor) sshd: my.domain.com: allow
> > > Any suggestions? Thanks. -Justin Heath
> > Justin, Which version of OpenSSH (`sshd -v` this says illegal option, but then gives you the version on the next line of stderr output) are you using? What is the path to the hosts.allow file in your references?
> Justin Heath

Best of luck with it.  I've heard various versions of ssh(d) support
hostnames, and others are strictly IP-based.

--
Peter Leftwich
President & Founder
Video2Video Services
Box 13692, La Jolla, CA, 92039 USA
+1-413-403-9555


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message