SUMMARY: ssh2/tcp_wrappers on 4.0f from Riggs, Joan on 2000-05-03 (tru64-unix-managers)

From: Riggs, Joan <Joan.Riggs_at_kls.usaka.smdc.army.mil>
Date: Wed, 03 May 2000 11:24:35 +1200

The only real info I received was from Trey Valenta (thanks, Trey!)

I did receive a couple inquiries about my book - I was only half-awake when
I claimed it was an O'Reilly book -
the book I have is by Anne Carasik titled "UNIX Secure Shell" and is NOT
published by O'Reilly. Sorry for the mistake!

Trey's suggestions are below:

> -----Original Message-----
>
> I have successfully installed ssh 2.013 and tcp_wrappers on Tru64 4.0f. I
> want to
> start with the basics and work my way up from there. I am totally new to
> ssh and
> have only the O'Reilly book on ssh to work from. I'd like to hear from
> persons with
> experience setting each up and making the best use of them together.
>
> Are there any good online tutorials on how to configure? experiences?
> gotchas?
> __________________________________________________________________________
> _____
>
> I could be wrong, but I think even with ssh2 it's advised against running
> it with tcp wrappers b/c each time the daemon
> starts you have to generate a key pair. For the most part, you can do the
> same things in your ssh config file, at least as
> far as specifying IP addresses and so forth.
>
> Trey Valenta
> __________________________________________________________________________
> _____
>
> I must admit that I don't run ssh2 often as I don't have a license for it.
> However, while I didn't see it in the man page,
> i believe that the AllowHosts and DenyHosts keywords are in the current
> version of sshd2. Essentially, you add to
> /etc/ssh2/sshd2_config things like:
>
> AllowHosts 207.17.117.20
> AllowHosts 207.17.117.*
> AllowHosts 192.168.20.*
> Allowhosts 209.67.65.73
>
> # dns0
> AllowHosts 63.68.217.95
>
> #Allowhosts 63.68.217.17* 63.68.217.18* 63.68.217.19* 63.68.217.2*
> Allowhosts 63.68.217.1?* 63.68.217.2?*
> Allowhosts 216.32.6.79
>
> I'd try grabbing the ssh1 distribution because I know it's docurmented
> there and I think it does apply to ssh2. And if it does fail, you should
> be able to follow the directions for compiling in support for
> tcp_wrappers but while I couldn't find it, it is documented somewhere that
> it slows down things.
>
> trey valenta
> __________________________________________________________________________
> _____
>
Received on Tue May 02 2000 - 23:28:10 NZST

This archive was generated by hypermail 2.4.0 : Wed Nov 08 2023 - 11:53:40 NZDT