From owner-freebsd-questions Fri Mar 24 17:10:19 2000 Delivered-To: freebsd-questions@freebsd.org Received: from Rigel.orionsys.com (rigel.orionsys.com [205.148.224.9]) by hub.freebsd.org (Postfix) with ESMTP id AA2C137BD93 for ; Fri, 24 Mar 2000 17:10:14 -0800 (PST) (envelope-from root@Rigel.orionsys.com) Received: from localhost (root@localhost) by Rigel.orionsys.com (8.9.3/8.9.3) with ESMTP id RAA49834 for ; Fri, 24 Mar 2000 17:10:06 -0800 (PST) (envelope-from root@Rigel.orionsys.com) X-Envelope-From: root@Rigel.orionsys.com X-Envelope-To: X-Envelope-Host: freebsd.org. Date: Fri, 24 Mar 2000 17:10:05 -0800 (PST) From: David Babler To: FreeBSD Questions List Subject: hosts.allow for inetd internals? Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Quick question... couldn't find an answer in the archives. Is it possible to selectively apply host.allow restrictions on processes (specifically auth/ident) that are internal to inetd, and if so, what process name applies? I run 'inetd -Ww' in 3.4-STABLE and used to run an external identd with a hosts.allow entry of: identd : ALL : allow [...] ALL : ALL \ : severity auth.info : spawn (/usr/bin/finger -l @%h | \ /usr/bin/mail -s "tcpd\: %u@%h[%a] tried to use %d (denied)" root) & \ : twist /bin/echo "You are not welcome to use %d from %h." Which worked fine. When I changed the inetd.conf entry to run a "real" internal identd, the auth/ident requests all got denied and logged. do I have to go back to the external daemon in order to be able to allow it? -Dave To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message