FS#16048 - [tcp_wrappers] sshd and tcp wrappers and ipv6
Attached to Project:
Arch Linux
Opened by Michal Svoboda (pht) - Sunday, 06 September 2009, 10:21 GMT
Last edited by Tobias Powalowski (tpowa) - Sunday, 29 August 2010, 11:15 GMT
Opened by Michal Svoboda (pht) - Sunday, 06 September 2009, 10:21 GMT
Last edited by Tobias Powalowski (tpowa) - Sunday, 29 August 2010, 11:15 GMT
|
Details
Description:
Can not get through tcpwrappers to ssh daemon when using ipv6. Additional info: * package version(s) tcp_wrappers 7.6-10 openssh 5.2p1-1 * config and/or log files etc. AddressFamily any ListenAddress :: (possibly also ListenAddress 0.0.0.0 - does not change behavior) hosts.allow: sshd: [2001:1508:148a::666] Steps to reproduce: ssh host (over ipv6) gives in auth.log: Sep 6 12:13:19 host sshd[3079]: refused connect from 0.0.0.0 (the 0.0.0.0 is totally weird) when i put sshd: ALL to hosts.allow, i can get through and my address appears correctly in the log: Sep 6 12:14:30 host sshd[3119]: Accepted password for user from 2001:1508:148a::666 port 55515 ssh2 |
This task depends upon
Closed by Tobias Powalowski (tpowa)
Sunday, 29 August 2010, 11:15 GMT
Reason for closing: Fixed
Additional comments about closing: fixed 7.6-12
Sunday, 29 August 2010, 11:15 GMT
Reason for closing: Fixed
Additional comments about closing: fixed 7.6-12
sshd: 2001:1508:148a::666
ATTENTION: I do not know the nature of the original ipv6 patch. As the whole functionality was DISABLED prior to my efforts, it is possible that the new ipv6 functionality creates security issues. I urge the package maintainer to cross check the original ipv6 patch against other distros.
But it is not activated apparently