Date: Tue, 13 Jul 1999 10:40:36 -1000 From: "Art Neilson, KH7PZ" <art@hawaii.rr.com> To: John Heyer <john@arnie.jfive.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Problems with TCP Wrappers in 3.2 Message-ID: <3.0.6.32.19990713104036.030794d0@clients1.hawaii.rr.com> In-Reply-To: <Pine.BSF.3.96.990713150742.28759B-100000@snake.supranet.ne t>
next in thread | previous in thread | raw e-mail | index | archive | help
There is no hosts.deny in FreeBSD 3.2-R. It is all combined in hosts.allow now. The comments at the top of the default hosts.allow state this explicitly. # hosts.allow access control file for "tcp wrapped" apps. # $Id: hosts.allow,v 1.2.2.2 1999/05/11 01:35:01 obrien Exp $ # # NOTE: The hosts.deny file is not longer used. Instead, put both 'allow' # and 'deny' rules in the hosts.allow file. # see hosts_options(5) for the format of this file. # hosts_access(5) no longer fully applies. # This is an example! You will need to modify it for your specific # requirements! I also have the %d problem you describe and was wondering about it as well. At 03:24 PM 7/13/99 -0500, you wrote: > >I'm having some troubles with TCP wrappers in 3.2, and was wondering if >there are any known bugs/patches, etc. My hosts.allow file looks like - >popper : ALL > >Then in hosts.deny - >ALL : ALL EXCEPT ournetwork/mask : twist /bin/echo "acess to %d not allowed" > >Everything works fine - with the exception of pop3 which is wide open, >all other connections are allowed/denied by the IP address range I've >specified. The problem is that after a few day of uptime, TCP wrappers >seems to "break" suddenly. In /var/log/messages, I see things like > >Jul 13 14:44:55 horse inetd[25034]: twist dialup.somewherelse to /bin/echo > >Note that %d is null, and the dialup user who should have access to the >popper is denied. I run "kill -9 `cat /var/run/inetd.pid'; inetd" >and everything's back to normal and working fine. > >We have a similar setup on our web server, which lets ftpd open since we >use an ftpaccess file for security instead. I've observed the problem on >another 3.2 machine was well. Anybody seen this where %d ends up being >null? > >-- >"Your illogical approach ... does have its advantages." > -- Spock, after being Checkmated by Kirk > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-questions" in the body of the message > -- __ / ) _/_ It is a capital mistake to theorise before one has data. /--/ __ / Insensibly one begins to twist facts to suit theories, / (_/ (_<__ Instead of theories to suit facts. -- Sherlock Holmes, "A Scandal in Bohemia" Arthur W. Neilson III, KH7PZ Bank of Hawaii Tech Support art@hawaii.rr.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3.0.6.32.19990713104036.030794d0>