From owner-FreeBSD-users-jp@jp.freebsd.org  Tue Oct  5 02:32:22 1999
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id CAA68665;
	Tue, 5 Oct 1999 02:32:22 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from tortoise.jp.freebsd.org (root@tortoise.jp.FreeBSD.ORG [210.157.158.41])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id CAA68660
	for <FreeBSD-users-jp@jp.freebsd.org>; Tue, 5 Oct 1999 02:32:22 +0900 (JST)
	(envelope-from issei@issei.org)
Received: from mx1.issei.org (mx1.issei.org [3ffe:505:a:1:290:ccff:fea1:1ff2])
	by tortoise.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP/IPv6 id CAA22467
	for <FreeBSD-users-jp@jp.freebsd.org>; Tue, 5 Oct 1999 02:32:18 +0900 (JST)
	(envelope-from issei@issei.org)
Received: from ORDIN2000 (d74.issei.org [210.254.221.74])
	by mx1.issei.org (8.9.3+3.2W/3.7W-v6) with ESMTP/IPv4 id CAA57380
	for <FreeBSD-users-jp@jp.freebsd.org>; Tue, 5 Oct 1999 02:32:16 +0900 (JST)
	(envelope-from issei@issei.org)
To: FreeBSD-users-jp@jp.freebsd.org
From: Issei Suzuki <issei@issei.org>
References: <37F8CC7E154.F7DCKAZUMI@jupiter.suntech.ac.jp>
In-Reply-To: <37F8CC7E154.F7DCKAZUMI@jupiter.suntech.ac.jp>
Message-Id: <199910050232.HEJ24874.TJFJT@issei.org>
X-Mailer: Winbiff [Version 2.30PL3 (on Trial)]
Date: Tue, 5 Oct 1999 02:32:25 +0900
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-2022-jp
Reply-To: FreeBSD-users-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+990727
X-Sequence: FreeBSD-users-jp 46280
Subject: [FreeBSD-users-jp 46280] Re: ssh-1.2.27 on FreeBSD 3.2-RELEASE : warning
Errors-To: owner-FreeBSD-users-jp@jp.freebsd.org
Sender: owner-FreeBSD-users-jp@jp.freebsd.org
X-Originator: issei@issei.org

In mail "[FreeBSD-users-jp 46275] ssh-1.2.27 on FreeBSD 3.2-
RELEASE : warning",
Kazumi Moriya <kazumi@jupiter.suntech.ac.jp> wrote:

> FreeBSD 3.2-RELEASE $B$K(B ssh-1.2.27 $B$r%$%s%9%H!<%k$7$^$7$?!#(B
> $B;O$a$O!"(Brc.local $B$+$i%G!<%b%s$r5/F0$7$F$$$?$N$G$9$,!"(Binetd
> $B$+$i5/F0$7!"(Bwrapper(FreeBSD 3.2-RELEASE $B$KI8=`$GF~$C$F$$$k(B
> libwrap.a) $BBP1~$9$k$h$&!"0J2<$N$h$&$K%3%s%Q%$%k(B & $B%$%s%9%H(B
> $B!<%k$7D>$7$^$7$?!#(B
> 
> % ./configure --with-libwrap=/usr/lib --disable-asm
> % make
> # make install

$B!!$3$N$h$&$K$7$F(B sshd $B$r:n@.$9$k$H!"(BTCP Wrapper $B$N%3!<%I$,(B sshd 
$B$N%P%$%J%j$K<h$j9~$^$l$k$?$a!"(Binetd $B7PM3$G(B sshd $B$r8F$S=P$5$J$/$F(B
$B$b(B TCP Wrapper $B$K$h$k%"%/%;%9@)8f$,M-8z$K$J$j$^$9!#(B

  inetd $B$r2p$7$F(B sshd $B$r5/F0$9$k$H!"(BTCP Wrapper $B$N%A%'%C%/$,=EJ#(B
$B$7$F9T$o$l$k$3$H$K$J$j$^$9!#(Binetd $B$r2p$7$F(B sshd $B$rMxMQ$9$k$J$i(B
--with-libwrap $B$r$D$1$:$K(B sshd $B$r%3%s%Q%$%k$7!"$=$&$G$J$$$J$i(B
--with-libwrap $B$r%3%s%Q%$%k$7$^$7$g$&!#(B

$B!!FCJL$JM}M3$,$J$$$N$J$i!"(Bsshd $B$O(B inetd $B$r2p$5$:$K%9%?%s%I%"%m%s(B
$B$G5/F0$9$k$3$H$r4+$a$^$9!#(B


> $B%$%s%9%H!<%k$O!"LdBj$J$/$G$-$?(B($B$H;W$&(B)$B$N$G$9$,!"%F%9%H$G0J(B
> $B2<$N$h$&$K(B warning $B$,I=<($5$l$k$N$,5$$K$J$j$^$9!#(B

$B!!(Btcpdchk $B$O(B /etc/inetd.conf $B$rFI$s$G!"0J2<$N%k!<%k$K=>$C$F5!3#(B
$BE*$K7k2L$r=PNO$7$F$$$k$@$1$G$9!#(B

 inetd.conf $B$NBh(B 6 $B%U%#!<%k%I$K(B
  1) tcpd $B$NJ8;z$,4^$^$l$F$$$k(B    OK
  2) /usr/libexec $B$,4^$^$l$F$$$k(B  MAYBE
  3) $B$=$l0J30(B                     NG

$B!!$3$N%k!<%k$O!"(BTCP Wrapper $B$,(B inetd $B$K<h$j9~$^$l$?8=:_$G$O!"$"(B
$B$^$j@5$7$$7k2L$r=PNO$9$k$H$O8@$($^$;$s$N$G!"5$$K$7$J$/$F$h$m$7$$(B
$B$+$H;W$$$^$9!#(B

# $B8=>u$K9g$&$h$&$K(B /usr/src/contrib/tcp_wrappers/inetdcf.c $B$N(B
# inet_chk() $B4X?t$r=$@5$9$k%Q%C%A$r:n$C$F(B send-pr $B$7$?$[$&$,NI$$(B
# $B$+$b$7$l$^$;$s$M!#(B


p.s.

$B!!@N$O(B TCP Wrapper $B$O(B inetd $B$K<h$j9~$^$l$F$$$J$+$C$?$N$G!"(BTCP 
Wrapper $B$N5!G=$rM-8z$K$9$k$K$O(B

  /etc/inetd.conf $B$NBh(B 6 $B%U%#!<%k%I$K(B tcpd $B$N%U%k%Q%9$r=q$/(B
  /etc/inetd.conf $B$NBh(B 7 $B%U%#!<%k%I$K%G!<%b%s$N%Q%9$r=q$/(B

$B$3$H$G!"(B

  1. inetd $B$,(B tcpd $B$r5/F0$9$k(B
  2. tcpd $B$,(B hosts.allow, hosts.deny $B$K$7$?$,$C$F%G!<%b%s$r5/F0(B
     $B$9$k$+$I$&$+$r7h$a$k(B

$B$H$$$&<j=g$rF'$s$G$$$^$7$?!#$7$?$,$C$F!"$;$C$+$/(B TCP Wrapper $B$r(B
$B%$%s%9%H!<%k$7$F$b(B /etc/inetd.conf $B$rE,@Z$K=q$-49$($J$$$H!"$=$N(B
$B5!G=$,M-8z$K$J$i$J$+$C$?$?$a!"(Btcpdchk $B$,(B /etc/inetd.conf $B$NBh(B 6 
$B%U%#!<%k%I$K(B tpcd $B$NJ8;zNs$,$"$k$+$r%A%'%C%/$7$F$$$?$o$1$G$9!#(B

$B!!:#$G$O(B inetd $B$K(B TCP Wrapper $B$,AH$_9~$^$l$F$$$k$?$a!"(Btcpd $B$r2p(B
$B$5$:$K%"%/%;%9@)8f$r9T$&$3$H$,2DG=$K$J$C$F$$$^$9!#(B

-- 
Issei Suzuki
