From owner-FreeBSD-users-jp@jp.freebsd.org  Sun May 23 12:54:25 1999
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id MAA59136;
	Sun, 23 May 1999 12:54:25 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from onion.ish.org (root@onion.ish.org [210.145.219.202])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id MAA59131
	for <FreeBSD-users-jp@jp.freebsd.org>; Sun, 23 May 1999 12:54:24 +0900 (JST)
	(envelope-from ishizuka@ish.org)
Received: from localhost (ishizuka@localhost [127.0.0.1])
	by onion.ish.org (8.9.3/3.7Wpl1-08/27/98) with ESMTP id MAA03173
	for <FreeBSD-users-jp@jp.freebsd.org>; Sun, 23 May 1999 12:54:20 +0900 (JST)
To: FreeBSD-users-jp@jp.freebsd.org
In-Reply-To: <19990523012911X.naru@mickey.ai.kyutech.ac.jp>
References: <19990522144017L.ishizuka@onion.ish.org>
	<19990523012911X.naru@mickey.ai.kyutech.ac.jp>
X-Mailer: Mew version 1.94b28 on Emacs 19.34 / Mule 2.3 (SUETSUMUHANA)
X-PGP-Fingerprint20: 276D 697A C2CB 1580 C683  8F18 DA98 1A4A 50D2 C4CB
X-PGP-Fingerprint16: C6 DE 46 24 D7 9F 22 EB  79 E2 90 AB 1B 9A 35 2E
X-PGP-Public-Key: http://www.ish.org/pgp-public-key.txt
X-URL: http://www.ish.org/
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Message-Id: <19990523125420D.ishizuka@onion.ish.org>
Date: Sun, 23 May 1999 12:54:20 +0900
From: Masachika ISHIZUKA <ishizuka@ish.org>
X-Dispatcher: imput version 990425(IM115)
Lines: 64
Reply-To: FreeBSD-users-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+990430
X-Sequence: FreeBSD-users-jp 42556
Subject: [FreeBSD-users-jp 42556] Re: tcp_wrappers on 3.2R
Errors-To: owner-FreeBSD-users-jp@jp.freebsd.org
Sender: owner-FreeBSD-users-jp@jp.freebsd.org
X-Originator: ishizuka@ish.org

>> ALL : localhost onion.ish.org : allow
>> sshd, ftpd: .ish.org : allow
>> ALL : PARANOID : RFC931 20 : deny
>> sendmail : ALL : allow
>> ALL : ALL \
>>      : severity auth.info \
>>      : spawn ( /bin/echo "tcpd\: %u@%h[%a] tried to use %d  (denied)" | \
>>     /usr/bin/mail -s "tcpd\: %u@%h[%a] tried to use %d  (denied)" root) & \
>>      : twist /bin/echo "You are not welcome to use %d from %h."
> 
> $B$b$7$+$7$F!$(Bonion.ish.org $B$+$i%"%/%;%9$7$F$$$^$;$s$+!)(B
> $B$@$H$7$?$i!$(B
>> ALL : localhost onion.ish.org : allow
> $B$K!$0z$C$+$+$k$O$:$G$9!%(B

  $B@PDM!w?yJB$G$9!#(B

  onion.ish.org $B$+$i$G$O$J$/$F!"A4A3JL$N%I%a%$%s$+$i(B

% telnet onion.ish.org ident

$B$7$F$b$D$J$,$C$F$7$^$&$N$G$9!#$b$H$b$H$D$J$2$?$+$C$?$N$G(B
$B$D$J$,$k$3$H<+BN$O0-$/$"$j$^$;$s$,!"(Bhosts.allow $B$N5-=R$H(B
$B$N4X78$,H=$i$J$$(B....

> $B$H$3$m$G!$>e5-$N@_Dj$G(B
> onion.ish.org $B0J30$N(B .ish.org $B$+$i$N(B ftp $B@\B3$O$G$-$k$G$7$g$&$+!)(B
> $B$H$$$&$N$O!$;d$N3NG'$7$?$H$3$m$K$h$k$H!$(B
> telnetd : hostname.hoge.ac.jp : allow
> ftpd    : hostname.hoge.ac.jp : allow
> $B$G$O!$(Bftp,telnet $B$I$A$i$H$b@\B3$G$-$:!$(B
> ALL     : hostname.hoge.ac.jp : allow
> $B$G$O!$$-$A$s$HG'>Z$9$k$+$i$G$9!%(B

  $B@_Dj$r$$$m$$$m$$$8$C$?$N$G!":#!";n834D6-$r:n$C$F;n$7$F(B
$B$_$^$7$?$,(B

ALL : .ish.org : allow
ALL : ALL : deny

$B$@$H(B .ish.org $B$JB>$N%^%7%s$+$i$b@\B3$G$-$F!"(B1$B9TL\$r:o=|(B
$B$9$k$HBLL\$K$J$k$N$G0l1~$3$A$i$G$O5!G=$7$F$$$k$_$?$$$G$9!#(B

  $B$=$l$h$j$b!":$$C$F$k$N$O(B portmap $B7/$G!"(B

ALL :  pumpkin.ish.org : allow
ALL : ALL :  twist /bin/echo "You are not welcome to use %d from %h."

$B$K$7$F$*$/$H!"(Bpumpkin.ish.org $B$+$i@\B3$G$-$J$$>e$K(B

| May 23 11:39:39 onion portmap[144]: warning: /etc/hosts.allow, line 79:
|        twist_option: dup: Bad file descriptor

$B$HE\$C$FMn$A$F$7$^$$$^$9!#(B
  classless $B$N5U0z$C$F(B inet_ntoa() $B$C$F$G$-$J$$$s$@$C$1!)(B
$B<h$j4:$($:(B

ALL :  210.145.219.203 : allow
ALL EXCEPT portmap : ALL \
    : twist /bin/echo "You are not welcome to use %d from %h."
ALL : ALL : deny

$BE*$K(B ip address $B$r=q$$$F!"$+$D(B portmap $B$O(B twist $B$7$J$$(B
$B$h$&$K$7$FF($2$F$^$9$,!":$$C$?OC$G$9!#(B
