[nycbug-talk] host.allow capability in login.conf ignored?

G. Rosamond george
Mon Oct 18 12:18:07 EDT 2004

On Oct 18, 2004, at 12:10 PM, csnyder wrote:

> I set up a login class for the first time today, which looks like this
> in /etc/login.conf:
> student:\
>         :filesize=4M:\
>         :maxproc=3:\
>         :host.allow=,localhost:\
>         :tc=default:
> Ran cap_mkdb and logged in as a student via ssh. I was limited to only
> 3 processes, which was good (this will be an scponly account). But I
> was able to log in from a host which was not in the host.allow list.
> Does ssh bypass this somehow? Or is host.allow ignored? I read TFM and
> it only said that idletime was unimplemented...

Try /etc/hosts.allow. . .


More information about the talk mailing list