On 11/21/06, Todd Zullinger <tmz@xxxxxxxxx> wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Paul Johnson wrote:
> Now in FC6 I notice that xinetd is not installed and so these host
> files have no effect. of course, I can install xinetd, but I'm
> suspecting that the FC6 designers want me to do something else in
> order to control access. How does one achieve the same effect without
> using xinetd?
What does xinetd not being installed have to do with ssh checking
hosts.{deny,allow}?
Oh, I see. it is possible to have a program that uses tcpwrappers
without going through xinetd. I did not understand before. Now i do
see in the opensh source's INSTALL file the option that compiles in
tcp-wrappers.
--with-tcp-wrappers will enable TCP Wrappers (/etc/hosts.allow|deny)
But now I don't understand what role xinetd is/was performing side by
side with the tcpwrap protection inside ssh's build.
- --
Todd OpenPGP -> KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp
======================================================================
Politicians are interested in people. Not that this is always a
virtue. Fleas are interested in dogs.
-- P.J. O'Rourke
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
iQFDBAEBAgAtBQJFY9opJhhodHRwOi8vd3d3LnBvYm94LmNvbS9+dG16L3BncC90
bXouYXNjAAoJEEMlk4u+rwzjR2EH/225QZmDRm9/q7HlAJUcM7c5QdxsoXa/6IGs
tFD8y6nUBBvhmZV9UVX4+GGCaCIhvOUZvblD8phh9SYBm3C/06XgbQwDM55J20EX
lCCmEOX3c7tKIbpC+Wmg/+XlQzx4TkhpqygdQESaoCT+eu5oSxh74qXwC+BHI+ap
2K98gqBdryAloGxTnTqxbOkjTewGlzPWMrAbBxJCD8YAoGCfqN08GZ6Qb8f/0It2
wvwp3c6i4R4h/K5lT1HVOreeqADXCzj6gdzowmjQwoR2HZKzKcl4L0Ndd7NOlHLZ
pR+3myo7eNb9IwGOQ8L2LZxK/Y9iZZyDX0w2bxThnkNqi2LC4sk=
=k5Z0
-----END PGP SIGNATURE-----
--
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
--
Paul E. Johnson
Professor, Political Science
1541 Lilac Lane, Room 504
University of Kansas
--
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
