On Tue, 7 Apr 1998, aoc wrote:
> i may be a newbie but i do know for a fact that "killall -HUP inetd" is
> needed to reread the /etc/hosts.allow / /etc/hosts.deny files.
Then your "fact" needs checking. Go check the source code. inetd never
calls any of the hosts_access functions that check the
hosts.allow/hosts.deny files. Those are checked by the tcp wrappers (in
/usr/sbin/tcpd), which is part of the tcp_wrappers package. All that inetd
does is sit there looking for incoming connections on the sockets listed
in /etc/inetd.conf. If a connection comes in it then calls tcpd (or
whatever service is listed), which does the actual /etc/hosts.allow and
/etc/hosts.deny checking and spawns the actual client program.
The operative part here is that tcpd isn't called until there's an actual
incoming connection to check, thus the checking of /etc/hosts.allow and
/etc/hosts.deny isn't done until the actual connection. Thus you can
change /etc/hosts.allow and hosts.deny all you want without restarting
inetd.
Eric Lee Green [EMAIL PROTECTED] Executive Consultants
Systems Specialist Educational Administration Solutions
"We believe Windows 95 is a walking antitrust violation" -- Bryan Sparks
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
http://www.redhat.com/RedHat-FAQ /RedHat-Errata /RedHat-Tips /mailing-lists
To unsubscribe: mail [EMAIL PROTECTED] with
"unsubscribe" as the Subject.
