SUMMARY - tcp wrapper booby-traps

From: Tom Erickson (
Date: Thu Nov 18 1999 - 12:20:57 CST

Thanks everyone...

My original post is at the end of this message.

The bottom line is that I needed to build tcp wrappers
with the language extensions turned on (they come disabled
by default).

STYLE = -DPROCESS_OPTIONS # Enable language extensions.

Rob Jenson and Rami Dass were right on target and Rob
provided an example as well as some insight into the how
and why of wrapper configuration. Wrap-on.

Thanks again - Tom Erickson

>I've got tcp_wrappers 7.6 installed and in my hosts.deny
>file I have it setup so I can get email back from a
>safe_finger when a connection is refused.
>Problem is, I can't get the safe_finger email AND the
>banners displayed for the same connection. If I set
>it up for banners - that works. If I set it up for
>safe_finger email - that works. How do I configure my
>hosts.deny file so that the attempted connection sees
>the banner warning and I get the safe_finger output
>mailed back to me?
>This is what my hosts.deny file looks like now:
>in.telnetd: ALL: (/usr/admin/sectools/tcp_wrappers_7.6/safe_finger -l @%h| \
> /usr/ucb/mail -s %d-%h itsecurity)
>.... other entries deleted for brevity ...

Intellisource Information Systems
CSOC IPP System Administration
(301) 286-1439

This archive was generated by hypermail 2.1.2 : Fri Sep 28 2001 - 23:13:33 CDT