On Sun, 9 Apr 2006 10:31:18 +0200 (CEST), Eric Spakman wrote > > > I think I might know what's rankling you here, since I think that I just > > finally figured it out myself. > > > > It would seem that any IP addresses that want to access the P9100 > > service need to be granted permission via: /etc/hosts.allow > > ?!?!?!?! > > > Correct, p9100nd is compiled with libwrap support. [snip] > It is possible to remove the dependency, but there is a reason why p9100 > (and a few other packages) are compiled with libwrap support. LEAF is > modular, so it is possible to use LEAF without shorewall as a pure router > or printserver (or whatever), libwrap gives some extra security in > the cases where iptables/shorewall isn't installed. >
We use LEAF without shorewall for other things. Could security for a libwrap-supported package be pointed at another one of the common Linux host access allowance files like "hosts.lpd" instead of "hosts.allow"? Then the p9100 package could "own" the file and provide editing in the administrative interface without messing other things up. ---Hillel ------------------------------------------------------- This SF.Net email is sponsored by xPML, a groundbreaking scripting language that extends applications into web and mobile media. Attend the live webcast and join the prime developer group breaking into this new coding territory! http://sel.as-us.falkag.net/sel?cmd=lnk&kid=110944&bid=241720&dat=121642 ------------------------------------------------------------------------ leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
