Your message dated Tue, 8 May 2007 16:00:51 +0200
with message-id <[EMAIL PROTECTED]>
and subject line Bug#422865: tcpd: numeric address and bits tests
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: tcpd
Severity: minor
Hello,
I tried recently to understand why the following line in hosts.allow
sshd: x.y.237.0/23
could not be matched by x.y.236.[0..254] nor x.y.237.[0..254]. I
finally found that the right invocation was
sshd: x.y.236.0/23
that is, all the untested bit, in this case the 24th included, have to
be set to zero. My understanding of the mask is that, in this case, it
is used to test the m first bits of the match between target and
client adress, and the test should be insensitive to the other
bits. Maybe this could be documented somehow ?
Best regards
Pascal Dupuis
-- System Information:
Debian Release: lenny/sid
APT prefers testing
APT policy: (500, 'testing'), (500, 'stable')
Architecture: i386 (i686)
Kernel: Linux 2.6.21
Locale: LANG=fr_BE.UTF-8, LC_CTYPE=fr_BE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
--- End Message ---
--- Begin Message ---
On May 08, "Pascal A. Dupuis" <[EMAIL PROTECTED]> wrote:
> bits. Maybe this could be documented somehow ?
No. You tried a broken configuration and it did not work, it's common
behavior for some programs. You are supposed to specify a NETWORK
ADDRESS and a netmask or prefix length, not a random IP address in the
network.
--
ciao,
Marco
signature.asc
Description: Digital signature
--- End Message ---
