Fedora tcp_wrappers (missing) support for custom acl scripts, aclexec
Pasi Kärkkäinen
pasik at iki.fi
Sun Jan 11 22:00:38 UTC 2015
On Sun, Jan 11, 2015 at 09:29:08PM +0100, Tomasz Torcz wrote:
> On Sat, Jan 10, 2015 at 12:16:38AM +0200, Pasi Kärkkäinen wrote:
> > Hello,
> >
> > I recently noticed Debian/Ubuntu has had support for "aclexec" in tcp_wrappers via a custom patch since 2006,
> > so you can do this in /etc/hosts.allow or hosts.deny:
> >
> >
> > What do people feel about that? I'd like to see support for aclexec included in Fedora's tcp_wrappers package.
>
> Enhancing tcpwrappers isn't generally a way we are going:
> https://lists.fedoraproject.org/pipermail/devel/2014-March/196913.html
>
> Above discussions is only about proposal, no change was made. But I highly doubt
> any serious work on tcpwrappers will happen.
>
Right.. I'm very used to using tcpwrappers, and it's pretty much in use on all the servers and desktops/laptops I have.
But it seems there are some technical issues why other people feel it should be nuked. Oh well..
For example (reverse) DNS based filtering is very simple with tcpwrappers, and the acl scripts..
Thanks for the pointer to the ml discussion!
-- Pasi
> --
> Tomasz Torcz ,,If you try to upissue this patchset I shall be seeking
> xmpp: zdzichubg at chrome.pl an IP-routable hand grenade.'' -- Andrew Morton (LKML)
>
> --
> devel mailing list
> devel at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/devel
> Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
More information about the devel
mailing list