On 11/21/06, Todd Zullinger <tmz@xxxxxxxxx> wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Paul Johnson wrote: > Now in FC6 I notice that xinetd is not installed and so these host > files have no effect. of course, I can install xinetd, but I'm > suspecting that the FC6 designers want me to do something else in > order to control access. How does one achieve the same effect without > using xinetd? What does xinetd not being installed have to do with ssh checking hosts.{deny,allow}?
Oh, I see. it is possible to have a program that uses tcpwrappers without going through xinetd. I did not understand before. Now i do see in the opensh source's INSTALL file the option that compiles in tcp-wrappers. --with-tcp-wrappers will enable TCP Wrappers (/etc/hosts.allow|deny) But now I don't understand what role xinetd is/was performing side by side with the tcpwrap protection inside ssh's build.
- -- Todd OpenPGP -> KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp ====================================================================== Politicians are interested in people. Not that this is always a virtue. Fleas are interested in dogs. -- P.J. O'Rourke -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iQFDBAEBAgAtBQJFY9opJhhodHRwOi8vd3d3LnBvYm94LmNvbS9+dG16L3BncC90 bXouYXNjAAoJEEMlk4u+rwzjR2EH/225QZmDRm9/q7HlAJUcM7c5QdxsoXa/6IGs tFD8y6nUBBvhmZV9UVX4+GGCaCIhvOUZvblD8phh9SYBm3C/06XgbQwDM55J20EX lCCmEOX3c7tKIbpC+Wmg/+XlQzx4TkhpqygdQESaoCT+eu5oSxh74qXwC+BHI+ap 2K98gqBdryAloGxTnTqxbOkjTewGlzPWMrAbBxJCD8YAoGCfqN08GZ6Qb8f/0It2 wvwp3c6i4R4h/K5lT1HVOreeqADXCzj6gdzowmjQwoR2HZKzKcl4L0Ndd7NOlHLZ pR+3myo7eNb9IwGOQ8L2LZxK/Y9iZZyDX0w2bxThnkNqi2LC4sk= =k5Z0 -----END PGP SIGNATURE----- -- fedora-list mailing list fedora-list@xxxxxxxxxx To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
-- Paul E. Johnson Professor, Political Science 1541 Lilac Lane, Room 504 University of Kansas