General :: What Do Host.allow And Host.deny Do Exactly?
Aug 5, 2009What do host.allow and host.deny do exactly? what are they??
View 3 RepliesWhat do host.allow and host.deny do exactly? what are they??
View 3 RepliesI have an Asterisk on an externally hosted vServer with Lenny. In order to further protect the SSH access I intended to change the Port number 22 to something like 55555. For this I changed the /etc/ssh/sshd_config file and restarted ssh. This caused unfortunately the following problems:
(1) The first login works but DenyHost writes now the IP in its list so that the second login with the same IP is blocked.
(2) With RESET_ON_SUCCESS = yes several logins were possible with the same IP, but later it also was blocked for some still unknown reasons.
(3) Files can be uploaded for being edited, but they can't always be saved. When they can't be saved the next login with this IP is blocked. It thus looks like the blocking can occur while being connected. When the files can't be saved it is however still possible to copy files from the computer to the vServer.
I add below the entries in the auth.log from a logout and a login. It shows further how suddenly the attempts to save files were blocked. After this session the IP used for it was blocked. I don't know where the message "Unable to open env file: /etc/default/locale" comes from. If I remember right I had these messages already before. I don't know how much that is really important.
[Code]....
I have deny host installed and working on my laptop, running Lucid. On attempting to install it on my desktop, also running Lucid I get the following message when trying to start the service
graham@graham-desktop:~$ sudo service denyhosts start
[sudo] password for graham:
starting DenyHosts: /usr/bin/denyhosts.py --daemon --config=/usr/share/denyhosts/denyhosts.cfg
sh: /usr/bin/denyhosts.py: not found
Its very strange as on the laptop denyhosts.py is not used.
I have two servers, one has an empty / and the other has a subdirectory with a large number (4 gig) with many, many files. I need a way to transfer the files en masse from the server with the large number of files to the one that is essentially blank.I don't have space on the used host to simply gzip all the files. I've googled this and see that there may be some combination of tar and/or gzip that will let me do this with some sort of redirection.
I really need and example line of how this can be accomplished. If my explanation seems rather sparse, I can supply more details.
I'm trying to ssh from my laptop to my desktop (both fedora 14) over a local network. I can ping my desktop and get responses, but if I ssh to it, I receive
ssh: connect to host 192.168.100.xxx port 22: No route to host
I can ssh from the desktop to itself.
HOW TO GET THE IP ADDRESS OF HOST IN LINUX WITH USING OF HOST AND NSLOOKUP COMMAND and after getting the ip address how to assign it in the variable
View 4 Replies View RelatedMany of mails sent from my mail server that are in Queue;The main reason is deffered by domains like yahoo,aol,etc.but there is one more error that i keep getting and that is Host Unknown,Below is an example from mail log,The catch is,test mail sent on the same email id sent from my personal mail from the same server i.e. url was deliveredHowever,another mail containing client information sent from customercare@mycompanysdomain ended up in queue.
There are more examples of the same,around 20 domain have the same problem.
Sep 7 14:33:46 server2 sendmail[24591]: n8793jiC024589: to=<abc@xyz.fi>, delay=00:00:00, xdelay=00:00:00, mailer=esmtp, pri=163672, relay=xyz.fi., dsn=5.1.2, stat=Host unknown (Name server: xyz.fi.: host not found)
Sep 7 22:09:42 server2 sendmail[6407]: n87Gdffa006403: to=<abc@def-fgh.com>, delay=00:00:00, xdelay=00:00:00, mailer=esmtp, pri=152474, relay=def-fgh.com., dsn=5.1.2, stat=Host unknown (Name server: def-fgh.com.: host not found)
I am working on a cluster for a molecular dynamics class and I have to edit my FORTRAN code (only the newest and best for me!). In order to get through to the cluster I have to ssh in. The network on which the cluster resides is behind a firewall, so I have to ssh through the firewall into the network first.
this is fine, I can login and move files and folders as needed, including sftp-ing into host 1, then into the cluster so I can transfer files from cluster to host and then host to me. This gets rather tiresome, so it would be nice to edit the files in place.
The problem is that when I access my code with emacs it launches the emacs client on Host 1, with no mouse support. I know the purists will howl about how I should be using keyboard shortcuts, but I am a chemist and not a programmer, so the mouse is very nice for me. Is there any way I can perhaps mount the cluster using sshfs so that when I open my code it launches a local instance of emacs? Sorry if this is the wrong forum, but I thought it was network related.
I got a bunch of machines (~10) that I share with my co-workers. I have appropriate .ssh file(s) set up so I don't get prompt for password when I try to ssh.Currently I ssh into these hosts and then do a top to check the load before I start using the machine. Because I don't want to be on a busy host.Can someone show me how to write a script that find a least-busy host given a list of hosts to check? (hardcoded is fine)
View 1 Replies View RelatedBit of an odd one, this. I've migrated a website from my old server to a new machine. Both servers run Ubuntu + Apache2. Both only serve a single site, apart from the default site.I've flipped the domain name to the new IP address.The trouble is that after moving the virtual host config over into sites-available, with the necessary link in sites-enabled, Apache attempts to serve from the default web root (/var/www) rather than the actual site content (in /var/www/technology). So for example, an attempt to browse.
View 1 Replies View RelatedI'm trying to get Synergy up and running between my Windows 7 (server) host and my Arch Linux (client) host. In rare exception, synergy works perfect on my windows host, however every time I try and run Synergy on my linux machine I get the following error in messages.log:
[code]...
I'm running Arch with a barebones Xorg install and SLiM with LXDE. I'm not sure what in the world is causing the problem and haven't been able to find anything of substance in a search.
The internal network is behind nat done by the PC Router.The TP Link is recieving wireless signal from outdoors and it has switching and basic routing capabilities. I'm using the PC router for better routing options.PC Router (or R for short) is a triple-booting machine - Linux, FreeBSD and Windows. It has two lan cards - external (ext_if) - 100Mbps Realtek 8139 and internal (int_if) - 1Gbps integrated Realtek 8169.The problem is that all traffic from R to the network is slow - about 5-20K, while the traffic in the oppoiste direction is all right - about 10MB that is fine for 100Mbps cables, NICs and switches. The problem persist no matter the OS the pc R is running.I've tried some debugging on the situation as follows:
- put another PC at the place of R - everything is fine. That exclude the possibility of damaged cables, RJ-45s, switches and etc.
- connected both of the NICs to the Internet while the internal network is being disconnected and they both work fine (no delays)
- traffic shaping is not running
- there is nothing in firewalls except NATing the internal network (and it is working fine). Actually these firewall rules have been operational for more than months and everything was fine untill a week or two ago.
- changed the internal NIC with another
- connected the internal network directly to the TP and all of the PCs are getting good network performance. Then connected the R machine to the TP as well and there was good performance between the internal network PCs and R.
- R has good performance to the TP. In fact everything has good performance directly to the TP (when not connecting trough R).
- the problem persist only between R and machines from the internal network.
So here's the setup:
Ubuntu 10.04 host inbound port 22 open
FreeBSD 8.0 host no inbound ports open
Both hosts are running sshd currently. What would you do for the Ubuntu host to be able to ssh to the FreeBSD host? A tunnel?
I am a bit of a n00b when it come to linux but I am setting up a test environment were I have a appliance monitoring network traffic. Part of my test requires me to copy a file via RCP from one host to another host. I have two ubuntu boxes. I have allowed the subnet in the etchost.allow for ALL. I have installed rsh-server
When I try to copy the file it looks like it tried to use SCP instad of RCP because it connects to 22 instead of 544. Also note that traffic must be unecrypted thus me trying to use Is there anyway to make ubuntu go old school to allow me to use rcp instead?
Code:
testuser1@ubuntu:~$ rcp /home/testuser1/test.txt testuser1@10.46.41.38:/home/testuser1
ssh: connect to host 10.46.41.38 port 22: Connection refused
lost connection
testuser1@ubuntu:~$ rcp
usage: scp [-12346BCpqrv] [-c cipher] [-F ssh_config] [-i identity_file]
[Code]....
I have installed CentOS 5.4 machine named test.example.com (192.168.1.1)File /etc/hosts contains:127.0.0.1 test.example.com test localhost.localdomain localhostI have read that the loopback addres should not be assigned to host name,only to localhost and the host name should be assigned to 192.168.1.1, like this:127.0.0.1 localhost.localdomain localhost192.168.1.1 test.example.com testIs there any reason why it should be one or another way?
View 6 Replies View RelatedHost - Fedora 12 64bit
KVM
VM - Windows Server 2008 64 bit
bridge-utils
VM can ping host and Internet but host can't ping VM.
I set VM static IP 192.168.0.205.
It turns out dynamic IP - 192.168.0.55
On host:
my problem is when iam typing
a=host test.com
echo $a
output
test.com has address 17.108.43.86
now i want to print only address (17.108.43.86) and don't want to print this line [[URL] has address] how to do this
I just have started configure samba on Centos 5.5 server. What's the different about host name and netbiosname?
View 1 Replies View RelatedI installed Nagios following the Quick Install method from the Nagios.org web site but now I would like to add and monitor another host.I don�t find a way , I have for example replaced the ip number of the localhost(127.0.0.1 localhost.cfg) for another ip number and I am able to monitor another computer that way. But then I no longer MONITOR the localhost unless I replace the ip number in the localhost.cfg file. what I would like to do is to monitor both or more computers.
View 4 Replies View RelatedCode:
Code:
Code:
Code:
Code:
Why can I not reach 192.168.1.1 ?
I am trying to run OpenNebula on a set of 2 machines. One of the machines(called host1) must be able to access the others(including itself) with passwordless ssh.Both machines have the same user and use mounted folder from host1 for home directory(exported with NFS). So single key generation should be enough for this configuration - all the machines have access to the same .ssh folder.What I am getting at the end is passwordless ssh from host1 to host2 which is great, but no success from host1 to host1. Host2 to host2 is also OK, host2 to host1 wants password like host1 to host1.Both machines have the same sshd_config and ssh_config files.File permissions required by ssh should be correct since it works for host1 to host2.The only difference(I see) between the machines is that host1 runs nfs service, so host2 has access to the exported folders.
The ssh-keygen is executed on host1authorized_keys has the same public key two times(to authorize access for host1 on host1 and host2).The distro is Scientific Linux 6.0 aand I also use rsa.Something else - no pass ssh with another user from host1 to host1 works, so I suppose the problem comes from this mounted folder.
naman@naman-laptop:~$ traceroute google.co.in
google.co.in: Name or service not known
Cannot handle "host" cmdline arg `google.co.in' on position 1 (argc 1)
Then I tracked the IP address of google.com on [URL] and tried
naman@naman-laptop:~$ traceroute 74.125.77.99
traceroute to 74.125.77.99 (74.125.77.99), 30 hops max, 40 byte packets
connect: Network is unreachable
I have to use my college proxy server to connect to the Internet. When I traceroute to a host within the LAN there is no problem. What should I do to be able to traceroute to a host outside my local network?
On an Ubuntu 9.10 machine, how do I change the host ID to a different value?
View 1 Replies View RelatedI have a host that is using NIS for user authentication. Both user A and B are valid user. But how to only allow user A login the host via ssh?
View 1 Replies View RelatedI have a non-sudo account on a shared host. I want to be able to run the git-core for version control.
I have another server that I am using for the git-repo.
How can I install a version of git inside of my user folder and execute that. I have shell access and the server is CentOS/Redhat/Fedora.
wanting to set up a website, I have a www folder with stuff in it, I'm on Ubuntu 10.10 I wanna port forward so that i can put my www files online and get a domain name,
View 1 Replies View RelatedA family member has got a windows PC (with a Pentium 4 w/o hardware virtualization support) that keeps winding up infected and crudding up. As I would like to minimize family IT support time, I figured the easiest thing to do was to wipe it, put Linux on it, install XP pro (they don't want a more recent one) in a VirtualBox virtual machine, and take a snapshot. I'd set up a shared drive on the host where they could store all their stuff, so that when it inevitably gets hosed, all I have to do is roll back to the snapshot.
This leaves me with the question - which host distro would be the best choice? I'm looking for three things - ease of maintenance on my part (updates, configuration, etc.; I have a background in slackware, but have some exposure to Ubuntu), minimalism (so that the bulk of the system's resources can be devoted to the VM), and virtualization-readiness (say, so I can have the computer automatically go from power up to virtual machine power up, thereby minimizing the user exposure to the host).
Obviously, I would like it if it has all of the standard tools that will allow me to do remote maintenance, also.
I've looked at Ubuntu server JeOS, and it seems enticing, but I can't seem to find out whether it can be used on a desktop system, i.e., with a GUI, etc.
According to the man page, host ought to query "the server or servers listed in /etc/resolv.conf," but it only uses the first entry in that file:
thefourthtower:$cat /etc/resolv.conf
nameserver 8.8.8.8
nameserver 8.8.4.4
[code]....
I am using fedora 14..i wanna create webservice in fedora 14...i am able to create sevice in server machine...but the client not able to get service from the server.it shows an error an i/o error has occured.no route to host.....we checked the ip address and port...i am able to ping the server...its connecting ...but it shows this error...?
View 1 Replies View RelatedI have a domain I have never used for some years, the registrar put some adds in it, now I have hosted and configured this domain as a VPS and have started to put files in it but when I enter the domain in the browser, it still displays the adds index of the registrar although I have my own index file in /var/www/. I thought the domain was automatically "taken over" (I do not know the correct technical expression) by the hosting company when my hosting is accepted by the host after they install a bare distro. Obviously, my expectation was incorrect and there is something else I need to do.
View 2 Replies View Related