Date: Sun, 19 Mar 2006 15:04:15 -0500 (EST) From: Jerry McAllister <jerrymc@clunix.cl.msu.edu> To: gerard@seibercom.net Cc: freebsd-questions@freebsd.org Subject: Re: hosts.allow ? Message-ID: <200603192004.k2JK4FCO018582@clunix.cl.msu.edu> In-Reply-To: <200603191032.21530.gerard@seibercom.net>
next in thread | previous in thread | raw e-mail | index | archive | help
> > --nextPart3654328.GjrC4HtVEj > Content-Type: text/plain; > charset="iso-8859-1" > Content-Transfer-Encoding: quoted-printable > Content-Disposition: inline > > Chris Maness wrote: > > > Daniel A. wrote: > > > On 3/19/06, Chris Maness <chris@chrismaness.com> wrote: > > >> My denyhost script is doing it's job by adding: > > >> > > >> sshd: 62.149.232.105 : deny > > >> > > >> to the hosts.allow file, but I see that this host is still making > > >> attempts to get into my box. Is there a cron job or something > > >> that has to re-read the hosts.allow file before it the IP will be > > >> blocked? _______________________________________________ > > >> freebsd-questions@freebsd.org mailing list > > >> http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > >> To unsubscribe, send any mail to > > >> "freebsd-questions-unsubscribe@freebsd.org" > > > > > > Offtopic, but > > > How did you set up denyhosts? Daemon? Cron? > > > > p.s. > > > > OK, I was able to get to work by just starting out with a blank > > hosts.allow. Everything is allowed by default, so when denyhosts > > adds a deny line to the file, it will deny access to that host. > > > > Also, sshd can't be started in rc.conf, it has to be started in > > inetd.conf. Make sure you do a /etc/rc.d/inetd restart after you > > make changes. > > Just out of curiosity, why can 'sshd' not be started from the=20 > '/etc/rc.conf' file? One doesn't start anything from the rc.conf file - at least properly. Those things get started from /usr/local/etc/rc.d. What goes in /etc/rc.conf are environmental variable settings that those rc.d scripts look at to determine what to do. ////jerry > > =2D-=20 > Gerard Seibert > gerard@seibercom.net > > PGP: http://www.seibercom.net/sig/gerard.asc > > --nextPart3654328.GjrC4HtVEj > Content-Type: application/pgp-signature > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.2.1 (FreeBSD) > > iD8DBQBEHXmFchM2dIO+3uMRAhLqAJ4yUlAdv8F4iOR6XroOBGA1gfmx2wCghmaI > JA15rhv79wmvbeNUMHdZzXY= > =irtd > -----END PGP SIGNATURE----- > > --nextPart3654328.GjrC4HtVEj-- >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200603192004.k2JK4FCO018582>