[EMAIL PROTECTED] wrote:
Hi!
I want to make ssh-access possible only from a restricted
number of hosts - those that are named in /etc/hosts.allow.
Users who want to login have a DynDNS host-name that shall
be listed in hosts.allow to make it possible for users with
a dial-up internet connecti
[EMAIL PROTECTED] wrote:
Hi!
I want to make ssh-access possible only from a restricted
number of hosts - those that are named in /etc/hosts.allow.
Users who want to login have a DynDNS host-name that shall
be listed in hosts.allow to make it possible for users with
a dial-up internet connection
(I'm replying to the list, hope you don't mind.)
On Thu, Jul 10, 2003 at 01:52:13PM +0200, Christian Kurz wrote:
> On [09/07/03 16:12], Peter Cordes wrote:
> > On Mon, Jul 07, 2003 at 07:38:17PM +0200, Fran?ois TOURDE wrote:
> > > Le 12240i?me jour apr?s Epoch,
> > > Mario Ohnewald ?crivait:
> > >
(I'm replying to the list, hope you don't mind.)
On Thu, Jul 10, 2003 at 01:52:13PM +0200, Christian Kurz wrote:
> On [09/07/03 16:12], Peter Cordes wrote:
> > On Mon, Jul 07, 2003 at 07:38:17PM +0200, Fran?ois TOURDE wrote:
> > > Le 12240i?me jour apr?s Epoch,
> > > Mario Ohnewald ?crivait:
> > >
Hi,
On Wed Jul 09, 2003 at 23:16:51 +0200, François TOURDE wrote:
> > By allowing connections from only a
> > few IP address blocks, you cut out most of the crackers in the world, but
> > don't have to mess with dynamic DNS and lack of reverse lookup; A good
> > tradeoff between security and con
Le 12242ième jour après Epoch,
Peter Cordes écrivait:
> On Mon, Jul 07, 2003 at 07:38:17PM +0200, Fran?ois TOURDE wrote:
>> Le 12240i?me jour apr?s Epoch,
>> Mario Ohnewald ?crivait:
>> > I think this problem should not be solved with configuring sshd.
>>
>> Wrong... You can configure sshd to acc
Hi,
On Wed Jul 09, 2003 at 23:16:51 +0200, François TOURDE wrote:
> > By allowing connections from only a
> > few IP address blocks, you cut out most of the crackers in the world, but
> > don't have to mess with dynamic DNS and lack of reverse lookup; A good
> > tradeoff between security and con
Le 12242ième jour après Epoch,
Peter Cordes écrivait:
> On Mon, Jul 07, 2003 at 07:38:17PM +0200, Fran?ois TOURDE wrote:
>> Le 12240i?me jour apr?s Epoch,
>> Mario Ohnewald ?crivait:
>> > I think this problem should not be solved with configuring sshd.
>>
>> Wrong... You can configure sshd to acc
On Mon, Jul 07, 2003 at 07:38:17PM +0200, Fran?ois TOURDE wrote:
> Le 12240i?me jour apr?s Epoch,
> Mario Ohnewald ?crivait:
> > I think this problem should not be solved with configuring sshd.
>
> Wrong... You can configure sshd to accept only login from recognized keys,
> and let the firewall op
On Mon, Jul 07, 2003 at 11:08:38AM +0200, [EMAIL PROTECTED] wrote:
> Hi!
>
> I want to make ssh-access possible only from a restricted
> number of hosts - those that are named in /etc/hosts.allow.
> Users who want to login have a DynDNS host-name that shall
> be listed in hosts.allow to make it po
On Mon, Jul 07, 2003 at 07:38:17PM +0200, Fran?ois TOURDE wrote:
> Le 12240i?me jour apr?s Epoch,
> Mario Ohnewald ?crivait:
> > I think this problem should not be solved with configuring sshd.
>
> Wrong... You can configure sshd to accept only login from recognized keys,
> and let the firewall op
On Mon, Jul 07, 2003 at 11:08:38AM +0200, [EMAIL PROTECTED] wrote:
> Hi!
>
> I want to make ssh-access possible only from a restricted
> number of hosts - those that are named in /etc/hosts.allow.
> Users who want to login have a DynDNS host-name that shall
> be listed in hosts.allow to make it po
[EMAIL PROTECTED] wrote:
Hi!
I want to make ssh-access possible only from a restricted
number of hosts - those that are named in /etc/hosts.allow.
Users who want to login have a DynDNS host-name that shall
be listed in hosts.allow to make it possible for users with
a dial-up internet connection
[EMAIL PROTECTED] wrote:
Hi!
I want to make ssh-access possible only from a restricted
number of hosts - those that are named in /etc/hosts.allow.
Users who want to login have a DynDNS host-name that shall
be listed in hosts.allow to make it possible for users with
a dial-up internet connection,
Le 12240ième jour après Epoch,
Mario Ohnewald écrivait:
> Hello!
>
>>-Original Message-
>>From: Anne Carasik [mailto:[EMAIL PROTECTED]
>>Sent: Monday, July 07, 2003 5:05 PM
>>To: [EMAIL PROTECTED]
>>Cc: debian-security@lists.debian.org
>>Subject
Le 12240ième jour après Epoch,
Mario Ohnewald écrivait:
> Hello!
>
>>-Original Message-
>>From: Anne Carasik [mailto:[EMAIL PROTECTED]
>>Sent: Monday, July 07, 2003 5:05 PM
>>To: [EMAIL PROTECTED]
>>Cc: [EMAIL PROTECTED]
>>Subject: Re: configure
Hello!
>-Original Message-
>From: Anne Carasik [mailto:[EMAIL PROTECTED]
>Sent: Monday, July 07, 2003 5:05 PM
>To: [EMAIL PROTECTED]
>Cc: debian-security@lists.debian.org
>Subject: Re: configure ssh-access
>
>
>Why not just limit the access through SSH publi
Why not just limit the access through SSH public key?
It sounds like that would accomplish what you're trying
to do.
-Anne
[EMAIL PROTECTED] grabbed a keyboard and typed...
> Hi!
>
> I want to make ssh-access possible only from a restricted
> number of hosts - those that are named in /etc/hosts.
Hello!
>-Original Message-
>From: Anne Carasik [mailto:[EMAIL PROTECTED]
>Sent: Monday, July 07, 2003 5:05 PM
>To: [EMAIL PROTECTED]
>Cc: [EMAIL PROTECTED]
>Subject: Re: configure ssh-access
>
>
>Why not just limit the access through SSH public key?
>It sou
Why not just limit the access through SSH public key?
It sounds like that would accomplish what you're trying
to do.
-Anne
[EMAIL PROTECTED] grabbed a keyboard and typed...
> Hi!
>
> I want to make ssh-access possible only from a restricted
> number of hosts - those that are named in /etc/hosts.
On Mon, Jul 07, 2003 at 11:08:38AM +0200, [EMAIL PROTECTED] wrote:
>
> I'd prefer to specify the rules for loggin into the machine
> in the sshd_config-file, not in hosts.allow/deny.
> But the AllowHosts/DenyHosts-options that could be used in
> /etc/sshd_config earlier seem to be not any
> longe
On Mon, 7 Jul 2003 11:08:38 +0200, [EMAIL PROTECTED] wrote:
>The problem is that I can only login to the ssh-machine
>when I enter the IP-address to the hosts.allow file.
>Specifying the hosts DNS-name does not work!
Thats probably because it does a reverse lookup on the connecting ip to see
if i
Hi!
I want to make ssh-access possible only from a restricted
number of hosts - those that are named in /etc/hosts.allow.
Users who want to login have a DynDNS host-name that shall
be listed in hosts.allow to make it possible for users with
a dial-up internet connection, too.
BUT:
The problem is
On Mon, Jul 07, 2003 at 11:08:38AM +0200, [EMAIL PROTECTED] wrote:
>
> I'd prefer to specify the rules for loggin into the machine
> in the sshd_config-file, not in hosts.allow/deny.
> But the AllowHosts/DenyHosts-options that could be used in
> /etc/sshd_config earlier seem to be not any
> longe
On Mon, 7 Jul 2003 11:08:38 +0200, [EMAIL PROTECTED] wrote:
>The problem is that I can only login to the ssh-machine
>when I enter the IP-address to the hosts.allow file.
>Specifying the hosts DNS-name does not work!
Thats probably because it does a reverse lookup on the connecting ip to see
if i
Hi!
I want to make ssh-access possible only from a restricted
number of hosts - those that are named in /etc/hosts.allow.
Users who want to login have a DynDNS host-name that shall
be listed in hosts.allow to make it possible for users with
a dial-up internet connection, too.
BUT:
The problem is
26 matches
Mail list logo