LinuxQuestions.org
Register a domain and help support LQ
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware
User Name
Password
Slackware This Forum is for the discussion of Slackware Linux.

Notices



Reply
 
Search this Thread
Old 05-18-2007, 10:05 AM   #1
matters
Member
 
Registered: May 2007
Distribution: Slackware
Posts: 281

Rep: Reputation: Disabled
tcpwrappers in the kernel


I heard that tcpwrappers are installed in the kernel. Is that true?

For some reason tcpwrappers dosent work with sshd.

Can someone point out to me how i can check if tcpwrappers are inside my current kernel?

Thanks!
 
Old 05-18-2007, 11:19 AM   #2
anomie
Senior Member
 
Registered: Nov 2004
Location: Texas
Distribution: RHEL, Scientific Linux, Debian, Fedora, Lubuntu, FreeBSD
Posts: 3,930
Blog Entries: 5

Rep: Reputation: Disabled
Quote:
Originally Posted by matters
For some reason tcpwrappers dosent work with sshd.
Post the results of
Code:
$ ldd /usr/sbin/sshd | grep libwrap
If your sshd binary doesn't live in that path, use whereis -b sshd to determine where it is and modify the above command accordingly.
 
Old 05-18-2007, 05:37 PM   #3
matters
Member
 
Registered: May 2007
Distribution: Slackware
Posts: 281

Original Poster
Rep: Reputation: Disabled
Quote:
Originally Posted by anomie
Post the results of
Code:
$ ldd /usr/sbin/sshd | grep libwrap
If your sshd binary doesn't live in that path, use whereis -b sshd to determine where it is and modify the above command accordingly.
There is no output of ldd /usr/sbin/sshd | grep libwrap

however i do have /usr/sbin/tcpd - that should indicate that tcpwrappers are installed or am I wrong ?

Last edited by matters; 05-18-2007 at 06:26 PM.
 
Old 05-18-2007, 06:40 PM   #4
anomie
Senior Member
 
Registered: Nov 2004
Location: Texas
Distribution: RHEL, Scientific Linux, Debian, Fedora, Lubuntu, FreeBSD
Posts: 3,930
Blog Entries: 5

Rep: Reputation: Disabled
If there's no output from that command (and you've specified the correct path to the sshd binary), then your sshd does not have tcp wrappers support compiled in.

You may be able to still take advantage of tcp wrappers by running sshd as an inetd service (presuming that has support compiled in - it should).

Since I don't run slackware, I'll leave the details of implementing that to someone who is familiar with that environment.
 
Old 05-19-2007, 06:15 AM   #5
Petri Kaukasoina
Member
 
Registered: Mar 2007
Posts: 242

Rep: Reputation: 86
Quote:
Originally Posted by matters
I heard that tcpwrappers are installed in the kernel. Is that true?
No, it's a userspace executable (tcpd) and a userspace library (libwrap.a).
Quote:
Originally Posted by matters
For some reason tcpwrappers dosent work with sshd.

Can someone point out to me how i can check if tcpwrappers are inside my current kernel?
libwrap.a is statically linked inside the sshd binary if you use the official Slackware openssh.
Code:
strings /usr/sbin/sshd | fgrep 'hosts.allow'
prints /etc/hosts.allow if that string is included in the sshd binary and it's there only if sshd has been linked against libwrap.a.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Dovecot and tcpwrappers in FC3? jonsson Fedora 1 08-09-2010 04:53 AM
TCPwrappers and user access blackcat_73 Linux - Security 4 11-07-2006 09:16 AM
tcpwrappers & xinted? hank43 Linux - Security 3 10-30-2006 06:10 AM
portsentry separate logs and TCPwrappers gabsik Linux - Security 5 04-05-2006 09:08 AM
Do I need an firewall if I set my tcpwrappers like this? rbrasil Linux - Security 7 12-18-2003 11:19 AM


All times are GMT -5. The time now is 01:19 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration