Bug 30554 - sshd собран без libwrap
Summary: sshd собран без libwrap
Status: CLOSED NOTABUG
Alias: None
Product: Sisyphus
Classification: Development
Component: openssh-server (show other bugs)
Version: unstable
Hardware: all Linux
: P3 blocker
Assignee: Gleb F-Malinovskiy
QA Contact: qa-sisyphus
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2014-12-09 17:01 MSK by Gleb Kulikov
Modified: 2014-12-09 21:14 MSK (History)
3 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Gleb Kulikov 2014-12-09 17:01:14 MSK 
sshd собран без libwrap, соотв., игнорирует /etc/hosts.deny
Comment 1 Dmitry V. Levin 2014-12-09 17:10:19 MSK 
From /usr/share/doc/openssh-6.7p1/CHANGES:

Changes since OpenSSH 6.6
=========================

Potentially-incompatible changes
 [...]
 * sshd(8): Support for tcpwrappers/libwrap has been removed.
Comment 2 Gleb Kulikov 2014-12-09 17:15:35 MSK 
>  * sshd(8): Support for tcpwrappers/libwrap has been removed.

и что делать? имхо, существенное уменьшение безопасности
Comment 3 Dmitry V. Levin 2014-12-09 21:14:14 MSK 
(In reply to comment #2)
> >  * sshd(8): Support for tcpwrappers/libwrap has been removed.
> 
> и что делать? имхо, существенное уменьшение безопасности

Предлагаю использовать firewall, это будет гораздо безопаснее.