On Wed, Aug 04, 2004 at 11:54:03AM -0400, ne... wrote:
On Aug 4, 2004 at 11:03, Matt Morgan in a soothing rage wrote:
[...]
>So use hosts.allow instead, and specify the few particular hosts that
>are allowed to attempt to connect. Everyone else will be summarily
>rejected. (Firewalling the world is not a bad option, either).
Does SSH use tcp wrappers on FC? If no, then modifying hosts.allow
and/or hosts.deny would be futile. If you have less than three
users connecting to your machine using ssh, I would just add
those users to the AllowUsers directive, else create a group and
add the users to it then use the AllowGroups directive.
Yes, FC has tcp wrapper-enabled sshd. Not using the hosts.access files to
add another layer of security is foolhardy, IMO.
--
Jack Bowling
mailto: jbinpg(a)shaw.ca