[NTLUG:Discuss] Hook SSHD into sendmail milter?
Neil Aggarwal
neil at JAMMConsulting.com
Sun Jul 10 16:32:54 CDT 2005
Brian:
The hosts.allow and hosts.deny are text files with IP specifications.
That is not what I want to do. I want to be able to use my existing
sendmail milter to reject connections to sshd.
Is there a way to configure sshd to call a program to check whether
an IP is allowed or not?
I see that hosts_access in section 3 of the man pages has
this function:
int hosts_ctl(daemon, client_name, client_addr, client_user)
char *daemon;
char *client_name;
char *client_addr;
char *client_user;
Is there a way to get sshd to call a program I write that implements
this method?
Thanks,
Neil
--
Neil Aggarwal, JAMM Consulting, (214) 986-3533, www.JAMMConsulting.com
FREE! Valuable info on how your business can reduce operating costs by
17% or more in 6 months or less! http://newsletter.JAMMConsulting.com
> -----Original Message-----
> From: discuss-bounces at ntlug.org
> [mailto:discuss-bounces at ntlug.org] On Behalf Of brian at pongonova.net
> Sent: Sunday, July 10, 2005 1:43 PM
> To: NTLUG Discussion List
> Subject: Re: [NTLUG:Discuss] Hook SSHD into sendmail milter?
>
>
> On Sun, Jul 10, 2005 at 02:04:33PM -0500, Neil Aggarwal wrote:
> > I would like to also deny SSH connections from those IPs
> > and was wondering if there is a way to hook into the milter
> > instead of writing a separate list of IPs to block.
>
> Set up sshd as a service under inetd. Use hosts.allow and hosts.deny
> to control access. See the man page for hosts_access for details.
>
> --Brian
>
> _______________________________________________
> https://ntlug.org/mailman/listinfo/discuss
>
More information about the Discuss
mailing list