[nycbug-talk] host.allow capability in login.conf ignored?
G. Rosamond
george
Mon Oct 18 12:18:07 EDT 2004
On Oct 18, 2004, at 12:10 PM, csnyder wrote:
> I set up a login class for the first time today, which looks like this
> in /etc/login.conf:
>
> student:\
> :filesize=4M:\
> :maxproc=3:\
> :host.allow=209.11.29.178,localhost:\
> :tc=default:
>
> Ran cap_mkdb and logged in as a student via ssh. I was limited to only
> 3 processes, which was good (this will be an scponly account). But I
> was able to log in from a host which was not in the host.allow list.
>
> Does ssh bypass this somehow? Or is host.allow ignored? I read TFM and
> it only said that idletime was unimplemented...
>
Try /etc/hosts.allow. . .
g
More information about the talk
mailing list