From owner-FreeBSD-users-jp@jp.freebsd.org  Wed Apr  4 20:15:56 2001
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id UAA17508;
	Wed, 4 Apr 2001 20:15:56 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from mocha.rite.or.jp (mocha.rite.or.jp [202.241.115.138])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id UAA17503
	for <FreeBSD-users-jp@jp.freebsd.org>; Wed, 4 Apr 2001 20:15:55 +0900 (JST)
	(envelope-from tetuya@rite.or.jp)
Received: from rite.rite.or.jp (rite [192.168.1.3])
	by mocha.rite.or.jp (8.9.3+Sun/3.7W-rite_mail_gate) with ESMTP id UAA02569
	for <FreeBSD-users-jp@jp.freebsd.org>; Wed, 4 Apr 2001 20:15:49 +0900 (JST)
Received: from zenon.rite.or.jp (zenon.rite.or.jp [192.168.4.251])
	by rite.rite.or.jp (8.9.3+Sun/3.7W) with ESMTP id UAA02671
	for <FreeBSD-users-jp@jp.freebsd.org>; Wed, 4 Apr 2001 20:15:50 +0900 (JST)
Received: from TETUYA.rite.or.jp (tetuya.rite.or.jp [192.168.2.246])
	by zenon.rite.or.jp (8.9.3+3.2W/3.7W-zenon_mail_gate) with ESMTP id UAA40442
	for <FreeBSD-users-jp@jp.freebsd.org>; Wed, 4 Apr 2001 20:15:52 +0900 (JST)
Message-Id: <4.3.2-J.20010404193833.00bd4ca0@zenon.rite.or.jp>
X-Sender: tetuya@rite.or.jp
X-Mailer: QUALCOMM Windows Eudora Version 4.3.2-J
Date: Wed, 04 Apr 2001 20:16:26 +0900
To: FreeBSD-users-jp@jp.freebsd.org
From: Tetuya Saito <tetuya@rite.or.jp>
Mime-Version: 1.0
Content-Type: text/plain; charset="ISO-2022-JP"; format=flowed
Content-Transfer-Encoding: 7bit
Reply-To: FreeBSD-users-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+010328
X-Sequence: FreeBSD-users-jp 60569
Subject: [FreeBSD-users-jp 60569] TCP_WRAPPER
 =?ISO-2022-JP?B?GyRCJEskRCQkJEYbKEI=?= 
Errors-To: owner-FreeBSD-users-jp@jp.freebsd.org
Sender: owner-FreeBSD-users-jp@jp.freebsd.org
X-Originator: tetuya@rite.or.jp

$B$_$J$5$s!"$3$s$P$s$o(B

$B@FF#(B@RITE$B$G$9(B

$B:#2s!"(BFreeBSD$B!!(B4.2STABLE$B$G%G%'%U%)%k%H$G%$%s%9%H!<%k$5$l$F$$$k(B
TCP_WRAPPER$B$N@_Dj$r9T$C$F$$$^$9!#(B
$B<+J,$NCf$G!"?'!9!";n9T:x8m$7$J$,$i@_Dj$r$7$F$$$?$N$G$9$,(B
$B$I$&$7$F$b!"$o$+$i$J$$ItJ,$,=P$F$^$$$j$^$7$F!"3F<1<T$N3'MM$K!"%"%I%P%$%9$r(B
$B$A$g$&$@$$$7$?$/!"%a!<%k$r=q$$$F$*$j$^$9!#(B

$B;d$N5M$^$C$F$$$k2U=j$O2<5-$NDL$j$G$9!"<1<T$N3'MM$4=u8@$h$m$7$/$*4j$$?=$7>e$2(B 
$B$^$9!#(B

$B#1!%(B/etc/ined.conf$B5Z$S(Bhosts.allow$B$N@_Dj$O2<5-$N$h$&$K@_Dj$7$^$7$?!#(B
Inetd.conf$B$N@_Dj(B
# $FreeBSD: src/etc/inetd.conf,v 1.44.2.3 2000/10/04 07:58:51 kris Exp $
#
# Internet server configuration database
#
#       @(#)inetd.conf  5.4 (Berkeley) 6/30/90
#
ftp     stream  tcp     nowait  root    /usr/libexec/ftpd       ftpd -l
telnet  stream  tcp     nowait  root    /usr/libexec/telnetd    telnetd
sshd    stream  tcp     nowait  root    /usr/sbin/sshd  /usr/sbin/sshd -i
finger  stream  tcp     nowait/3/10 nobody /usr/libexec/fingerd fingerd -s
comsat  dgram   udp     wait    tty:tty /usr/libexec/comsat     comsat
<$B>JN,(B>
#
# RPC based services (you MUST have portmapper running to use these)
#
#rstatd/1-3     dgram rpc/udp wait root /usr/libexec/rpc.rstatd  rpc.rstatd
#rusersd/1-2    dgram rpc/udp wait root /usr/libexec/rpc.rusersd rpc.rusersd
#walld/1        dgram rpc/udp wait root /usr/libexec/rpc.rwalld  rpc.rwalld
#pcnfsd/1-2     dgram rpc/udp wait root /usr/libexec/rpc.pcnfsd  rpc.pcnfsd
#rquotad/1      dgram rpc/udp wait root /usr/libexec/rpc.rquotad rpc.rquotad
#sprayd/1       dgram rpc/udp wait root /usr/libexec/rpc.sprayd  rpc.sprayd
#
# example entry for the optional pop3 server
#
pop3    stream  tcp     nowait  root    /usr/local/libexec/qpopper      popper
<$B>JN,(B>
#SAMBA
swat    stream  tcp     nowait.400 root /usr/local/sbin/swat    swat

hosts.allow
all:    127.0.0.1
telnetd         :192.168.2.246 192.168.4.251 192.168.1.4
ftpd            :192.168.2.246 192.168.4.251 192.168.1.1
comsat          :192.168.2.246
fingerd         :192.168.2.246
sshd            :192.168.2.246 192.168.4.251
$B$3$N>uBV$G!"(Btcpdchk$B$r<B9T$9$k$H(B
warning: /etc/hosts.allow, line 10: sshd: service possibly not wrapped
$B$H=PNO$5$l$^$9!#$3$l$O!"%G%'%U%)%k%H$G%$%s%9%H!<%k$5$l$F$$$k!"(BOpenSSH_2.3.0
$B$,(BTCP_WRAPPER$B$r(Benable$B$K$;$:$K(Bmake$B$5$l$F$$$k$?$a$J$N$G$7$g$&$+!)(B
$B!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!](B 
$B!]!]!]!]!]!]!]!]!]!](B
$B#2!%(Bportmap$B%G!<%b%s$O(BNIS$B5Z$S(BNFS$B$r;H$o$J$$8B$j!";HMQ$7$J$$$N$G$7$g$&$+!)(B
hosts.allow$B$r2<5-$N$h$&$K@_Dj$7$F$_$^$7$?!#(B
hosts.allow
all:    127.0.0.1
telnetd         :192.168.2.246 192.168.4.251 192.168.1.4
ftpd            :192.168.2.246 192.168.4.251 192.168.1.1
comsat          :192.168.2.246
fingerd         :192.168.2.246
sshd            :192.168.2.246 192.168.4.251
portmap	:192.168.2.246 192.168.4.251
$B$3$N>uBV$G!"(Btcpdchk$B$r<B9T$9$k$H!"(B
warning: /etc/hosts.allow, line 11: portmap: service possibly not wrapped
$B$H=PNO$5$l$^$9!#$3$l$O!">e5-(B1$B$N<ALd$G!"(BRPC based services $B$NItJ,$,(B
$B%3%a%s%H%"%&%H$5$l$F$$$k$;$$$J$N$+$H9M$(!"%3%a%s%H%"%&%H$r$O$:$7$F(B
tcpdchk$B$r<B9T$7$F$_$?$N$G$9$,!"7k2L$OF1$8$G$7$?!#(B

$B$$$m$$$m$J!"%[!<%`%Z!<%8Ey$r8!:w$7$F$_$k$H!"(Bportmap$B$O(BNIS$B5Z$S(BNFS$B$K$*$$$F(B
$B;HMQ$9$k%W%m%H%3%k$J$N$G!"(BNIS$B5Z$S(BNFS$B$r;HMQ$7$J$$>l9g$O!"%W%m%;%9$r;_$a$F$*$$(B 
$B$?J}$,$h$$(B
$B$H5-=R$7$F$"$k%[!<%`%Z!<%8$,$"$C$?$N$G$9$,!"K\Ev$K$=$l$@$1$J$N$G$7$g$&$+!)(B
$B!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!]!](B 
$B!]!]!]!]!]!]!]!]!]!]!](B
$B#3!%(BTCP_WRAPPER$B$N1F6A$r5Z$\$9HO0O$K$D$$$F(B
$B;d$,!";HMQ$7$F$$$k(BFreeBSD$B!!(B4.2STABLE$B$O8=9T$G!"(BTCP_WRAPPER$B$,(Binetd$B$KAH$_9~$^$l(B 
$B$F$$$k(B
$B$H;W$&$N$G$9$,!"$G$O!"(Binetd$B$+$i5/F0$7$J$$$b$N$K$O!"(BTPC_WRAPPER$B$O1F6A$r5Z$\$5(B 
$B$J$$$N$G$7$g$&$+!)(B

FreeBSD$B%7%9%F%`4IM}F~Lg!!(BP89$B%Z!<%8$K$h$j$^$9$H(Bsendamil$B5Z$S(Bportmap$B$O(Blibwrap.a 
$B$,%j%s%/$5$l$F$$$k$N$G(B
hosts.allow$B$K(B
sendmail$B!'(BALL$B!'(Ballow
portmap$B!'(BALL$B!'(Ballow$BEy$N@_Dj$,I,MW$G$"$k$HL@5-$5$l$F$$$k$N$G$9$,!"$3$l$rDj5A$7(B 
tcpdchk$B$r<B9T$9$k$H(B
sendmail: service possibly not wrapped
portmap: service possibly not wrapped
$B$H7Y9p$,=PNO$5$l$^$9!#$3$l$O!"5$$K$7$J$/$F$b$$$$$N$G$7$g$&$+!)(B
$B$=$l$H$b!";d$N@_Dj$,$$$1$J$$$N$G$7$g$&$+!)(B


$B0J>e!"#3E@$N<ALd$J$N$G$9$,!"<1<T$N3'MM!"%"%I%P%$%9$h$m$7$/$*4j$$$7$^$9!#(B

***************************************************************
*
* $B:bCDK!?M(B $BCO5e4D6-;:6H5;=Q8&5f5!9=(B
* $B8&5f4k2hIt(B $B8&5f;Y1g2](B
* $B@FF#!!E/Li!!(B
*
* e-mail$B!'(Btetuya@rite.or.jp
* $B=;(B  $B=j!'(B $B")(B619-0292 $B5~ETI\Aj3Z74LZDED.LZDE@nBf#9!]#2(B
* $BEE(B  $BOC!'(B $B#0#7#7#4!]#7#5!]#2#3#0#3(B
* $B#F#A#X!'(B $B#0#7#7#4!]#7#5!]#2#3#1#6(B
* PGP Finger Print 39E8 238C F4DB 7B94 83D3  0831 E1F9 3089 FC97 BD54
****************************************************************

