warning: /etc/hosts.deny, line 20: missing ":" separator
Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
3. try deleting the file and just create a new one with only the active lines
Done Well I have not seen the warning message.
Dunno what made it work.
Thanks all.
If some one is interested to do a postmortem of this problem I will reply.Let me know.
it should like there was a non-printing character somewhere in there. cat -A <filename> will show the non-printing chars. Thats an easy way to show if there is something that shouldnt be there
it should like there was a non-printing character somewhere in there. cat -A <filename> will show the non-printing chars. Thats an easy way to show if there is something that shouldnt be there
Okay this what I did before doing any thing on original file
you can see it here.
cat -A /etc/hosts.deny
Code:
# /etc/hosts.deny: list of hosts that are _not_ allowed to access the system.$
# See the manual pages hosts_access(5) and hosts_options(5).$
#$
# Example: ALL: some.host.name, .some.domain$
# ALL EXCEPT in.fingerd: other.host.name, .other.domain$
#$
# If you're going to protect the portmapper use the name "portmap" for the$
# daemon name. Remember that you can only use the keyword "ALL" and IP$
# addresses (NOT host or domain names) for the portmapper, as well as for$
# rpc.mountd (the NFS mount daemon). See portmap(8) and rpc.mountd(8)$
# for further information.$
#$
# The PARANOID wildcard matches any host whose name does not match its$
# address.$
# You may wish to enable this to ensure any programs that don't$
# validate looked up hostnames still leave understandable logs. In past$
# versions of Debian this has been the default.$
## ALL: PARANOID$
ALL: 211.43.204.42$
ALL: 218.67.246.61$
ALL: 115.238.71.37$
All: 76.76.8.197$
I could not understand what you said if it is there some thing you pointed let us know.
hosts.deny is not working authentication log shows Bye:bye has server been hacked
I am using Debian Lenny.
my auth.log shows
Code:
sshd[31944]: warning: /etc/hosts.deny, line 20: missing ":" separator
May 16 07:32:22 sshd[31945]: Received disconnect from 218.67.246.61: 11: Bye Bye
May 16 07:32:22 sshd[31946]: warning: /etc/hosts.deny, line 20: missing ":" separator
May 16 07:32:24 sshd[31947]: Received disconnect from 218.67.246.61: 11: Bye Bye
May 16 07:32:25 sshd[31948]: warning: /etc/hosts.deny, line 20: missing ":" separator
May 16 07:32:27 sshd[31949]: Received disconnect from 218.67.246.61: 11: Bye Bye
May 16 07:32:27 sshd[31950]: warning: /etc/hosts.deny, line 20: missing ":" separator
May 16 07:32:29 sshd[31951]: Received disconnect from 218.67.246.61: 11: Bye Bye
May 16 07:32:30 sshd[31952]: warning: /etc/hosts.deny, line 20: missing ":" separator
May 16 07:32:32 sshd[31953]: Received disconnect from 218.67.246.61: 11: Bye Bye
May 16 07:32:32 sshd[31954]: warning: /etc/hosts.deny, line 20: missing ":" separator
May 16 07:32:34 sshd[31955]: Received disconnect from 218.67.246.61: 11: Bye Bye
May 16 07:32:35 sshd[31956]: warning: /etc/hosts.deny, line 20: missing ":" separator
May 16 07:32:37 sshd[31957]: Received disconnect from 218.67.246.61: 11: Bye Bye
The above IP is present on /etc/hosts.deny then why is it not blocking connections and why is this Bye Bye thing there.
You have a problem in your hosts.deny file, as your log is telling you. If you post its contents, one of us should be able to point it out to you. Or just look at line 20 with your preferred editor and, armed with 'man hosts.deny', you might be able to solve it yourself.
Thanks I did not knew any such thing also existed.
Quote:
Originally Posted by win32sux
tkmsr, I've merged your latest post (and the reply from jcomeau_ictx) into your original thread.
Where did you merge it this is different from :20 line thread.I got a new thing here and that thread did not had Bye:Bye problem.That was solved also .Every one who was reading must have gone also bye now.
I know this is old but all you have to do is add a : to the end of the line.
IP :
IP :
Actually, if you look at his hex dump, the last two bytes are: "0a37".
The 0a is the newline terminator of the preceding line which is valid. The "37" is a "%" character which is invalid, AND lacks a : separator between the IP number (a %) and its permission lists...
Easy to miss - he didn't include the last line (likely invisible due to its not being a complete line...)
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.