Date: Sun, 2 Dec 2001 13:46:07 +0800 From: Greg Matheson <lang@ms.chinmin.edu.tw> To: freebsd-questions@freebsd.org Subject: rshd refuses login depending whether client on LAN or dialup Message-ID: <20011202134607.A7050@ms.chinmin.edu.tw>
next in thread | raw e-mail | index | archive | help
I am a user on a FreeBSD system where I have a cvs repository set up and I have cvs working on it in client/server mode, but only from some of the Windows 98 machines running cygwin on which I am trying to develop from. The problem is rshd is refusing to log me in from some IP addresses. It seems to depend on whether the client is on a LAN or a dialup network, but this may be because the LAN IP addresses don't appear to have reverse DNS, and the dialup ones do. The error messages from rsh are similar to those reported in http://docs.freebsd.org/cgi/getmsg.cgi?fetch=573265+0+archive/2001/freebsd-questions/20010930.freebsd-questions Looking at /etc/hosts.allow, I see: # Prevent those with no reverse DNS from connecting. ALL : PARANOID : RFC931 20 : deny I am not too sure that this is the line which is causing me problems, because I am able to login to the telnet and ftp servers from all of the IP addresses I am using. If it is, I have to consider the options before approaching the sysads who it is difficult to communicate with. Should I ask them to activate the cvs pserver in /etc/inetd.conf? #cvspserver stream tcp nowait root /usr/bin/cvs Should I ask them to try to give me reverse DNS for some IP addresses, which however are not in their domain? OR can I ask them to relax the reverse DNS rule for some IP addresses? Is the line in /etc/hosts.allow in fact the problem? -- Greg Matheson The students are not brilliant. Chinmin College Luckily, we're brilliant teachers. --Lee Altschuler Taiwan Penpals Archive <URL: http://netcity.hinet.net/kurage> To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20011202134607.A7050>