From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1GhYs9-0007Zs-SF for garchives@archives.gentoo.org; Tue, 07 Nov 2006 21:52:46 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.8/8.13.8) with SMTP id kA7Lnjt0001212; Tue, 7 Nov 2006 21:49:45 GMT Received: from fire-eyes.org (adsl-68-250-9-164.dsl.sfldmi.ameritech.net [68.250.9.164]) by robin.gentoo.org (8.13.8/8.13.8) with ESMTP id kA7LihhW014440 for ; Tue, 7 Nov 2006 21:44:44 GMT Received: from [10.1.1.2] (helo=[0.0.0.0]) by fire-eyes.org with esmtp (Exim 4.63) (envelope-from ) id 1GhYkN-0002uM-Bf for gentoo-user@lists.gentoo.org; Tue, 07 Nov 2006 16:44:43 -0500 Message-ID: <4550FE4B.5040903@fire-eyes.org> Date: Tue, 07 Nov 2006 16:44:43 -0500 From: fire-eyes User-Agent: Thunderbird 2.0a1 (X11/20061023) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] OpenSSH security References: <4550E4CC.6050400@fire-eyes.org> <4550E6DE.9070803@comcast.net> <20061107214003.GA26322@atrey.karlin.mff.cuni.cz> In-Reply-To: <20061107214003.GA26322@atrey.karlin.mff.cuni.cz> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Spam-Score: -1.4 (-) X-Spam-Report: Spam detection software, running on the system "fire-eyes", has identified this incoming email as possible spam. The original message has been attached to this so you can view it (if it isn't spam) or label similar future email. If you have any questions, see the administrator of that system for details. Content preview: Pavel Sanda wrote: >> In addition to fail2ban, look at deny2hosts and sshdfilter. > > accidentally i was solving the same problem today. > i tried to use hosts.allow/deny but it seems sshd doesnt > reflect to them (i have tcpd use flag on). > is openssh on gentoo supposed to work with these files ? > > bye, > pavel [...] Content analysis details: (-1.4 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- -1.4 ALL_TRUSTED Passed through trusted hosts only via SMTP X-Archives-Salt: 195ae0c7-ffc5-445f-b338-0b3c5bbd81e3 X-Archives-Hash: b44736eaaceb28dfc907400af7c5217c Pavel Sanda wrote: >> In addition to fail2ban, look at deny2hosts and sshdfilter. > > accidentally i was solving the same problem today. > i tried to use hosts.allow/deny but it seems sshd doesnt > reflect to them (i have tcpd use flag on). > is openssh on gentoo supposed to work with these files ? > > bye, > pavel only if you have tcpd USE flag on. I would not rely on it, as it's old and silly. -- gentoo-user@gentoo.org mailing list