| |
| |
| |
|
Page: 1 2
Comments:
<0> hey guys, how do you make sshd only accept connections from certain ip's?
<1> DanS: you can use /etc/hosts.allow and /etc/hosts.deny
<1> or iptables
<0> hmm. i checked the hosts.deny file and it's empty
<0> (its set to allow only one ip currently.. i need to change that ip)
<1> DanS: hosts.allow an example :)
<2> DanS, be very very careful
<1> sshd : 192.168.1.1 : allow
<2> if its a remote box..you could lock yourself out
<1> sshd : ALL : deny
<0> OmegaEvil: its in this office
<2> k as long as you have permanent physical access to it
<2> or a remote console unit
<1> DanS: http://closedsrc.org/dn-articles/hosts_allow.html there :))
<0> bot my hosts.allow and host.deny are empty
<1> DanS: you need to fill it :p
<1> with the correct info
<0> znx: yes, but its already set somewhere else on the machine
<0> It's allowing a 67.36.<i wont finish this ip> ip to connect
<0> i need to change it from that ip to something else
<0> I don't want to allow that ip anymore
<1> DanS: ok thats in iptables then probably
<1> what do you use to look after your firewall?
<1> what script i mean
<0> where is iptables located?
<1> iptables is a command
<0> I'm not sure; this is an old cobalt that someone installed sshd on
<0> oh ok, my bad :)
<1> DanS: iptables -L <-- will list the current ruleset
<0> command not found
<1> DanS: as root?
<0> yep, im in as root
<1> did you su -
<1> to become root?
<0> still not found
<1> hrmm ..
<0> thought it might not be in the path so I tried a locate, no results
<0> here's a better question....
<0> how can I just search the contents of all files in /etc/ and its subdirectories, for a string (67.36)
<1> DanS: find /etc -type f -print0 | xargs -0 grep "67.36"
<0> hmm
<0> that didnt find it either
<0> any other directories where something like that might be stored?
<1> DanS: hrmm not really..
<1> could it be the interface its listening on?
<0> its listening on a public ip thats accepting connections on other ports (80, 21, etc)
<1> and only one ip can be accepted?
<0> huh?
<1> DanS: is the sshd restricted to only one ip being accepted ?
<0> oh, let me check
<0> nope
<0> its listening on all ip's
<0> (just tried connecting to a different ip on it)
<1> so .. its only one batch of ip's that cant connect?
<0> from my 67.36. address, I can connect to SSH on any IP that server is listening on
<0> but if I try connecting from x.y.z to that server on any IP, it won't accept the connection
<1> could the restrict be elsewhere in the system?
<1> ie that box allows everything .. but some firewall in between xyz and the box doesnt?
<1> xyz --> firewall --> sshd box
<0> hmm
<0> i guess ill leave this server till another time
<0> anyway, on the other server, hosts.allow is whats' being used
<0> sshd : localhost : allow \ sshd : 1.2.3.4 : allow \ sshd : all : deny
<0> so i can just add another line there
<0> do I need to restart some service for the hosts.allow file to take effect
<1> no
<1> it reads host for each connection
<0> hmm, it didnt effect it?
<0> do i need to restart ssh after doing that?
<0> lol
<0> It would help if the connection I was testing it from wasn't blocking outgoing connections on that port... :P
<1> hehe
<2> May the hack be with you!
<2> znx im seriously considering to buy php programming
<1> :o
<2> the new version is out in april
<1> nice
<0> should a full ip end with a period in proftpd.conf ? I see that when it's only a three-part ip it ends with a period
<2> nice to have as a reference
<2> never used proftpd
<2> its had its share of secuirty issues in the past
<1> vsftpd >
<2> pureftpd > vsftpd
<1> :O
<1> OmegaEvil: join chatlounge :D
<2> wy ?
<2> h
<2> its amazing how people always drink a red gl*** of wine when they are in front of the webcam
<2> got spammed by sysstat...due to permissions set wrong
<2> 1400 emails!
<2> leet
<2> haha
<0> what would cause sendmail to take up 90% of the cpu
<2> spam
<1> hehe
<1> normal mail?
<1> hehe
<0> think someones mailboxes are getting spammed?
<1> sendmail doesnt scale well i think >
<2> no spam...spam spiders gueesing email adresses
<2> on winblows servers its fun
<2> **** all ya can do then
<1> oh OmegaEvil .. i meant to ask you.
<2> lunix...iptables...np
<2> DanS, do a netstat ..
<1> is there a way you know of .. to remote shutdown a windows machine from linux?
<2> ehhh
<2> lol dont know
<1> i found "rpcclient" in samba
<2> possibly...if ya ssh in
<1> which .. well works sometimes ..
<1> ssh into windows?
<2> hmmm
<2> you mean maliciously ?
<2> shut it down ?
<1> no
<2> k
<1> we are going to do power saving
<2> a mate had a tool...
<0> what is stored in the clientmqueue folder?
<1> shutdown at night.. wol in the morning OmegaEvil
<2> ahhh
<2> no idea mate
<1> DanS: client mail queue?
<2> im no windows guru and never will be
<1> nah neither me
<1> OmegaEvil: it was funny.. ive not scripted in kix before
<1> and yet i wrote a better script that the admin..
<1> heh
<2> kix ?
<1> a simple scripting util for windows
<2> hah
<1> i didnt know about it either..
<1> not util yesterday :)
<2> well i looked into winblows scripting
<2> before...but havent heard of kix
<1> well .. its used to auto install some packages
<2> haha Hype....on his show...put the poll tax up!
<2> haha
<2> hes funny as ****
<1> http://www.kixtart.org/
<1> there :)
<2> haha lame
<1> yup
<2> ...typical ms approach...its been coded for you...
<2> trust it all.....no need to underdstand
<1> anyhoo.. i scripted something x1000 better in shell..
<2> no doubt znx
<1> and all it lacks is a command to shutdown
<1> currently what is does
Return to
#redhat
or
Go to some related
logs:
#computers
#politics
maratime beer
#solaris
p4rma
ebat friendster
#politics
stroke/bore of ls2
#politics
#beginner
|
|