Hi Brendan,
There was just a very similar question on this list which I and others
answered. To reiterate:
I have compiled TCP/IP wrappers into my ssh installation. Doing this lets
you use the systems /etc/hosts.deny and /etc/host.allow files. And, I
know this works. Do not, however, run sshd from /etc/inetd.conf because
it will authorize very slow. I run mine from the rc files.
Carl
On 09-Dec-99 Brendan Choi wrote:
> I know in /etc/sshd_config, sshd can deny hosts by wildcard of a
> network
> class.
>
> SSH Denyhosts 192.168.130.*
>
> But can it deny by subnet like
>
> SSH Denyhosts 192.168.130.128/27
>
> or
>
> SSH Denyhosts 192.168.130.128 255.255.255.224
>
>
> I'm sorry, but I cannot test this right now, but I wonder if anyone
> knows
> offhand? Thanks!
>
>
>
> Brendan
>
>
------------------------------------------------------------------------
E-Mail: Carl J. Nobile <[EMAIL PROTECTED]>
Date: 09-Dec-99 Phone: 315-453-2912 Ex. 5336
Time: 15:05:30 Fax: 315-453-3052
Software Engineering Group
This message was sent by XFMail AppliedTheory Corp.
------------------------------------------------------------------------
