Skip site navigation (1)Skip section navigation (2)
Date:      Sat, 27 Nov 1999 00:30:07 +0100
From:      Brad Knowles <blk@skynet.be>
To:        Jos Backus <Jos.Backus@nl.origin-it.com>
Cc:        green@freebsd.org, ports@freebsd.org
Subject:   Re: OpenSSH for -STABLE?
Message-ID:  <v04205503b464c6595396@[195.238.21.204]>
In-Reply-To: <19991126200152.A39178@hal.mpn.cp.philips.com>
References:  <v04205505b45b1dd2e5a5@[195.238.21.204]> <4.2.0.58.19991119131954.00a8e238@mail.sstar.com> <v0420550cb4646aed45f3@[195.238.21.204]> <v0420550eb46478917a14@[195.238.21.204]> <19991126200152.A39178@hal.mpn.cp.philips.com>

next in thread | previous in thread | raw e-mail | index | archive | help
At 8:01 PM +0100 1999/11/26, Jos Backus wrote:

> I sent this patch to Brian Feldman earlier today:
>
> 	--- work/ssh/Makefile.inc.orig  Fri Nov 26 19:59:42 1999
> 	+++ work/ssh/Makefile.inc       Fri Nov 26 19:59:59 1999
> 	@@ -1,4 +1,4 @@
> 	-CFLAGS+=       -I${.CURDIR}/..
> 	+CFLAGS+=       -I${PREFIX}/include -I${.CURDIR}/..

	With this, OpenSSH compiles and runs on -stable, however it 
doesn't seem to understand the "AllowHosts" directive, and there's 
nothing in the man page I can find that will do something similar (as 
with "SyslogFacility" and "LogLevel" that take the place of 
"QuietMode" and "FacistLogging").

	Are we supposed to instead build this with libwrap support, and 
use it to allow/deny access from certain IP addresses instead of 
OpenSSH?


	Looking through sshd.c and servconf.c, nothing obvious leaps out 
at me as the proper way to solve this problem, and it doesn't seem to 
be mentioned in (except in passing) in sshd.8.

-- 
   These are my opinions -- not to be taken as official Skynet policy
  ____________________________________________________________________
|o| Brad Knowles, <blk@skynet.be>            Belgacom Skynet NV/SA |o|
|o| Systems Architect, News & FTP Admin      Rue Col. Bourg, 124   |o|
|o| Phone/Fax: +32-2-706.11.11/12.49         B-1140 Brussels       |o|
|o| http://www.skynet.be                     Belgium               |o|
\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/
  Unix is like a wigwam -- no Gates, no Windows, and an Apache inside.
   Unix is very user-friendly.  It's just picky who its friends are.


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ports" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?v04205503b464c6595396>