Maybe it's time to get rid of tcpwrappers/tcpd?
Petr Lautrbach
plautrba at redhat.com
Fri Mar 28 13:48:10 UTC 2014
On 03/28/2014 02:44 PM, Reindl Harald wrote:
>> - every change in sshd_config has to be confirmed by sshd restart, while changing hosts.deny doesn't need
>> any other action
>
> no - try it out!
>
> make a fatal syntax error in "sshd_config" and in case of a
> remote machine make sure you don't close the last connection
> because you will not reach the machine again otherwise
>
>
[14:46:53 root at malas ~ ]# /usr/sbin/sshd -T
/etc/ssh/sshd_config: line 157: Bad configuration option: blbla
/etc/ssh/sshd_config line 157: Directive 'blbla' is not allowed within a Match block
[14:46:55 root at malas ~ ]# ssh localhost
Fedora release 21 (Rawhide)
root at localhost's password:
Petr
--
Petr Lautrbach
Security Technologies
Red Hat
Better technology. Faster innovation. Powered by community collaboration.
See how it works at redhat.com.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: OpenPGP digital signature
URL: <http://lists.fedoraproject.org/pipermail/devel/attachments/20140328/816e0c6a/attachment.sig>
More information about the devel
mailing list