-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- --
Debian Security Advisory DSA 341-1 [EMAIL PROTECTED]
http://www.debian.org/security/ Matt Zimmerman
July 7th, 2003
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- --
Debian Security Advisory DSA 342-1 [EMAIL PROTECTED]
http://www.debian.org/security/ Matt Zimmerman
July 7th, 2003
Hi!
I want to make ssh-access possible only from a restricted
number of hosts - those that are named in /etc/hosts.allow.
Users who want to login have a DynDNS host-name that shall
be listed in hosts.allow to make it possible for users with
a dial-up internet connection, too.
BUT:
The problem is
On Mon, 7 Jul 2003 11:08:38 +0200, [EMAIL PROTECTED] wrote:
The problem is that I can only login to the ssh-machine
when I enter the IP-address to the hosts.allow file.
Specifying the hosts DNS-name does not work!
Thats probably because it does a reverse lookup on the connecting ip to see
if it
On Mon, Jul 07, 2003 at 11:08:38AM +0200, [EMAIL PROTECTED] wrote:
I'd prefer to specify the rules for loggin into the machine
in the sshd_config-file, not in hosts.allow/deny.
But the AllowHosts/DenyHosts-options that could be used in
/etc/sshd_config earlier seem to be not any
longer
Why not just limit the access through SSH public key?
It sounds like that would accomplish what you're trying
to do.
-Anne
[EMAIL PROTECTED] grabbed a keyboard and typed...
Hi!
I want to make ssh-access possible only from a restricted
number of hosts - those that are named in
The signature is bad at my end, and my end usually works so it looks
like something mangled your message.
--
Tom Goulet mail: [EMAIL PROTECTED]
UID0 Unix Consultingweb: em.ca/uid0/
---BeginMessage---
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Am 02:55 2003-07-03 +0200 hat Luis Gomez - InfoEmergencias geschrieben:
On Miércoles, 2 de Julio de 2003 15:05, Preben Randhol wrote:
What about: http://www.nsa.gov/selinux/ ?
For the sake of God, how in hell can we associate nsa.gov with secure?
Excuse me if I'm bullshitting, but I understand
Hello!
-Original Message-
From: Anne Carasik [mailto:[EMAIL PROTECTED]
Sent: Monday, July 07, 2003 5:05 PM
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: Re: configure ssh-access
Why not just limit the access through SSH public key?
It sounds like that would accomplish what you're
Le 12240ième jour après Epoch,
Mario Ohnewald écrivait:
Hello!
-Original Message-
From: Anne Carasik [mailto:[EMAIL PROTECTED]
Sent: Monday, July 07, 2003 5:05 PM
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: Re: configure ssh-access
Why not just limit the access through SSH
[EMAIL PROTECTED] wrote:
Hi!
I want to make ssh-access possible only from a restricted
number of hosts - those that are named in /etc/hosts.allow.
Users who want to login have a DynDNS host-name that shall
be listed in hosts.allow to make it possible for users with
a dial-up internet connection,
Hi!
I want to make ssh-access possible only from a restricted
number of hosts - those that are named in /etc/hosts.allow.
Users who want to login have a DynDNS host-name that shall
be listed in hosts.allow to make it possible for users with
a dial-up internet connection, too.
BUT:
The problem is
On Mon, 7 Jul 2003 11:08:38 +0200, [EMAIL PROTECTED] wrote:
The problem is that I can only login to the ssh-machine
when I enter the IP-address to the hosts.allow file.
Specifying the hosts DNS-name does not work!
Thats probably because it does a reverse lookup on the connecting ip to see
if it
On Mon, Jul 07, 2003 at 11:08:38AM +0200, [EMAIL PROTECTED] wrote:
I'd prefer to specify the rules for loggin into the machine
in the sshd_config-file, not in hosts.allow/deny.
But the AllowHosts/DenyHosts-options that could be used in
/etc/sshd_config earlier seem to be not any
longer
Why not just limit the access through SSH public key?
It sounds like that would accomplish what you're trying
to do.
-Anne
[EMAIL PROTECTED] grabbed a keyboard and typed...
Hi!
I want to make ssh-access possible only from a restricted
number of hosts - those that are named in
The signature is bad at my end, and my end usually works so it looks
like something mangled your message.
--
Tom Goulet mail: [EMAIL PROTECTED]
UID0 Unix Consultingweb: em.ca/uid0/
---BeginMessage---
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Am 02:55 2003-07-03 +0200 hat Luis Gomez - InfoEmergencias geschrieben:
On Miércoles, 2 de Julio de 2003 15:05, Preben Randhol wrote:
What about: http://www.nsa.gov/selinux/ ?
For the sake of God, how in hell can we associate nsa.gov with secure?
Excuse me if I'm bullshitting, but I understand
Hello!
-Original Message-
From: Anne Carasik [mailto:[EMAIL PROTECTED]
Sent: Monday, July 07, 2003 5:05 PM
To: [EMAIL PROTECTED]
Cc: debian-security@lists.debian.org
Subject: Re: configure ssh-access
Why not just limit the access through SSH public key?
It sounds like that would
Le 12240ième jour après Epoch,
Mario Ohnewald écrivait:
Hello!
-Original Message-
From: Anne Carasik [mailto:[EMAIL PROTECTED]
Sent: Monday, July 07, 2003 5:05 PM
To: [EMAIL PROTECTED]
Cc: debian-security@lists.debian.org
Subject: Re: configure ssh-access
Why not just limit the access
[EMAIL PROTECTED] wrote:
Hi!
I want to make ssh-access possible only from a restricted
number of hosts - those that are named in /etc/hosts.allow.
Users who want to login have a DynDNS host-name that shall
be listed in hosts.allow to make it possible for users with
a dial-up internet
20 matches
Mail list logo
