I'm trying to use ssh-keyscan to get some known_host file population going on, but I have a ton of hosts I want to scan, all with multiple aliases in /etc/hosts. Is there a way to use my current /etc/hosts file to do an ssh-keyscan instead of making a special list of hosts that (from what I've read) ssh-keyscan needs?
View 2 RepliesProbably an easy (which means stoopid) question...I am trying to reroute a website using my hosts file so that it matches my servers certificate file for testing without effect dns and the live site.When I went to edit my /etc/hosts file it is non-existent. I have, I am assuming in it's place, hosts.allow and hosts.deny. Can anyone explain why I do not have a hosts file?
View 1 Replies View RelatedWell, as many proxy applications, GNOME Network Proxy Preferences only allow to ignore hosts. What I want to do is exactly the opposite. I only want to use the proxy for few sites. Is it possible to define only the allowed hosts in any way?
PS: I know FoxyProxy add-on for Firefox does this, but 1)I don't use Firefox and 2)I want the proxy settings system wide not only for browser.
I can reach other hosts by means of their global addresses by either the IP address or hostname (that has the global address). What I want to (also) do is have a hostname that references the IPv6 link local IP address (an AAAA record in DNS, or just the fe80::<whatever> address in /etc/hosts) and use that host name in commands to access that host. The problem is, an interface ID is needed when making such a reference.
It sure looks like the programs just pass the host name string on to the resolver library, which does not understand the significance of the '%' even though it could find and see that the name preceding the '%' is consistent with that being an IPv6 link local address (e.g. the logic could have been "split at first % and see if preceeding name is found as a link local address and accept that if so, or ignore the split otherwise" ... but it isn't). Is there a different syntax for this ... or was it overlooked in the design of programming around IPv6?I want to be able to address a host by its link local address, while still using a mnemonic instead of having to type the IPv6 address.
[Code]....
What I want: multiple virtual hosts with ssl and only 1 ip address: In my example: server = 192.168.227.129
[Code]....
1) I'm not sure which IP address to use when I list my machine name in /etc/hosts, particularly after reading:
Quote:
By the w]ay, Arnt Gulbrandsen <agulbra@nvg.unit.no> says that 127.0.0.1 # should NEVER be named with the name of the machine. It causes problems # for some (stupid) programs, irc and reputedly talk. :^)
Here's what I have now:
Code:
root@eagleswing:~# hostname
eagleswing
root@eagleswing:~# cat /etc/HOSTNAME
eagleswing.5binc
[Code]...
I'm not certain how to include my router in /etc/hosts so I can use it to link my PCs as stated above. I was thinking of writing (see above link):
192.168.2.1 localbelkin Will this work & is it proper?
3) Do I need to make use of any other IP addresses at this link? What are the WAN IP & Default Gateway addresses used for? I am going to be serving documents & running scripts on Apache.
I've set up two security associations(in and out) on two hosts, and then set up two policies per host that should filter traffic to those SA's. Yet when I try to ping one host from the other I get no response, meaning that the filters on one side work and drop unprotected packets, but both hosts are configured to communicate using ipsec. Can anyone point me in the right direction?
Code:
ip xfrm state add src 192.168.77.23 dst 192.168.77.24 proto esp spi 0x53fa0fdd mode transport reqid 16386 replay-window 32 auth "hmac(sha1)"
[code]...
I'm not sure if this is best done in Perl or Bash. I'm thinking surely someone else has created something close to what I'm looking for. The results of the script would be that someone would kick off "linux_hosts.sh" r whatever you want to call it, then a top "folder" of options (with hosts contained within each of these top menu choices), then, based on which number corresponds to that top level, they're presented with a set of linux hosts that are relevant to that top level name. Example:
$ linux_hosts.sh
1. VMware hosts 4. Private Domain
2. ESX servers 5. Red Hat boxes
[code]...
I found this IP address in my hosts.allowQuote:ALL: 119.42.68.232I cannot find any other evidence of intrusion.
View 4 Replies View RelatedI just downloaded the DenyHosts2.6python2.5.rpm for deny.hosts from sourceforge and would like to set it up. I normally use fish://, smb:// and ftp:// on the boxes on my lan. I already have files called hosts.allow and hosts.deny in the /etc folder. Will the rpm configure hosts.deny when first run?
View 1 Replies View RelatedI'm having troubles trying to understand this problem:my homeserver until yesterday had a public IP, staying on network, with sshd running and all was fine;this evening I changed the IP, giving it a local lan address, and what happened if I tried to connect to it by ssh?I got an error about "Connection closed by remote host". Google helped me finding that was regarded to hosts.deny file, that was actually containing a lineALL:ALLthat I commented, and all was fine.My question is: why the hosts.deny (that has never changed) was observed only with the local IP?I tried to switch back to the public IP and leaving ALL:ALL, and it did connect without any problem
View 1 Replies View RelatedI could not find any where the documentation the only best which I got was [URL]
My question is the following blog says to remove an IP from /etc/hosts.deny which denyhost has blocked
[URL] you need to have a directory /usr/share/denyhosts/data I do not find any such directory
Also when I tried to check tcp wrapper configuration as given here
[URL]
tcpdchk -v Cannot find your inetd.conf or tlid.conf file. Please specify its location.
what does the above output mean? How do I make sure denyhosts is doing its job?
Is there a 'plugin' for wireshark to analyze traffic and spot infected (windows) hosts? I have been using nepenthes with no luck. (and doubt all hosts are clean) is there some better way (other than using antivirus on each host)?
View 10 Replies View RelatedI have set up SSH and redirected the ssh server to listen on another port other than 22 for a bit of added security.
Now in hosts.deny I have:
ALL : ALL
In hosts.allow I have:
SSH : ip_address_of_client
I can no longer connect. I get the message: ssh_exchange_identification: Connection closed by remote host.
When I change hosts.allow to read:
ALL : ip_address_of_client
I can successfully connect the server.
However, I only want to allow SSH access in hosts.allow. What is the correct syntax?
I have tried and failed with each one of these:
SSH : ip_address:port_number
SSH2 : ipaddress
sshfwd-portnumber : ip_address_of_client
I just set up denyhosts and it worked properly the first time adding lots of ips to the hosts.deny.I then set it to run every 12 hours noon and midnight.I wanted to see if ran properly and I got all this.Does it look like its working?
Code:
May 15 12:00:01 hyrule CRON[14286]: (root) CMD (python /usr/share/denyhosts/denyhosts_ctl.py -c /usr/share/denyhosts/denyhosts.cfg )
[code]...
I share a computer with my brother. It runs Lucid Lynx. I want to add an entry to the hosts file that will affect him negatively. Is there a way I can add the entry, without it affecting him, like, is there a user-specific hosts file?
View 9 Replies View RelatedI am using denyhosts on a server so in a config file/etc/denyhosts.confthe following value is setQuote:DENY_THRESHOLD_INVALID = 3which as per their configuration file saysQuote:
DENY_THRESHOLD_INVALID: block each host after the number of failed login
# attempts has exceeded this value. This value applies to invalid
# user login attempts (eg. non-existent user accounts)
[code]...
I am trying to add subdomains on ubuntu 9.10 desktop edition and and I am not sure whether I need to add some info.(such as 127.0.0.1 sub1.example.com and so on) to the /etc/hosts file like the windows' windows/system32/drivers/etc/hosts file. I used to use the wamp-server(on Windows 7), I needed to edit 3 files, httpd.conf, httpd-vhosts.conf and hosts. And almost every edit is made in the httpd-vhosts.conf file on wamp-serveriles should be edited? or what else should be done that I didn't mention?
View 1 Replies View Relatedtell me a way to password protect the HOSTS file in ubuntu so that when i block certain websites the other person cannot unblock them.
IMP: i donot want the HOSTS file to be protected by 'root' password as the other person knows it.
I want to know why when i change the file hosts, fill it with due parameters and reboot the system, the latter unexpectedly change ?
View 2 Replies View RelatedI'm configuring Apache to work from several development directories as per these instructions: http://tuxtweaks.com/2009/07/how-to-...-apache-linux/
Got it all to work ok, for a while but then when I reboot the entries I've made in the hosts file dissapear and I can no longer use them.
I'm assuming DHCP reverts the hosts file or something?
What's the 'proper' way to get an entry into a hosts file and have it stay there?
Instructions say "Add hostname for the NIC card into /etc/hosts file" do I touch or mkdir it in?
View 11 Replies View RelatedI run a few virtual servers at home behind a NAT, including an e-mail server, with dynamically updated dns records pointing to each of the servers. Consequently, I suffer from the loopback problem when working with these servers from my desktop PC. (E.g., I ping one of the dns hostnames and the ping goes to my router instead of the server). I fixed this problem by manually adding the in-home IP addresses and name pairs to my /etc/hosts, and then setting /etc/host.conf to a "hosts, bind" order.
This seems to work for every application on my desktop except for one: the postfix installation on my desktop PC (used for mailing smartctl messages and so forth) cannot communicate with my in-home e-mail server (times out). I checked the logs, and it looks like it is trying to use the IP address from the actual A-RECORD, rather than the address in my hosts file.
So I'm not quite sure what to do. There seems to be a "proxy_interfaces" parameter in main.conf which might be relevant, but I think it only deals with received mail. I'd prefer to have the mail going to that e-mail server, rather than also having to check the spool on my local desktop accounts.
I have some settings within hosts file of my Windows Vista. It helps me to bypass some limitation and get online better. I would like to migrate some settings to openSUSE 11.4.Is there anyone who knows how can I tune my openSUSE?FYI, setting of hosts file is lines of <IP Address> <Spaces OR Tabs> <URL OR Alias>
View 4 Replies View RelatedI would like to lock the /etc/hosts file somehow in a way that only someone else can unlock it, possibly using a lock code.I would then give the passcode to someone else.I'm running Ubuntu 10.10.
View 2 Replies View RelatedI've trying to get dnsmasq working as a combined dns and dhcp server. It's infuriating so far... In short, the DNS works fine for anything added to /etc/hosts, and the dhcp works fine, but the dhcp is not updating the dns with hostname information from clients.
The outcome of this is that i can only ping a node by hostname if i know it's address, which means setting a static dhcp allocation and putting the hostname into /etc/hosts manually, which is very annoying and kind of defeats the poit of dhcp. There must be a way to get dnsmasq to update the hosts file, surely The clients aren't using fqdn's if that matters, and i think i've tried every combinination of "expand-hosts" and "domain=" following is the dnsmasq config file contents:
domain-needed
bogus-priv
except-interface=tun0
[code]....
I often manually add a troublesome domain (e.g., advertisements, fake virus alerts, etc.) to my /etc/hosts file on Ubuntu 10.04 Lucid; but the effect isn't immediate.My hosts file is already fifteen thousand lines long (having combined all the hosts files I could find on the net, including the MVP one); but I still, almost daily, find a new irritant to add to my /etc/hosts file.My problem is I do not understand WHEN the /etc/hosts file is next read after a change.I've been rebooting to make sure the hosts is re-read; but there must be a simpler way.My question:
- WHEN is the /etc/hosts file reconsidered in Ubuntu?
- Is there a way to have the /etc/hosts file re-read sooner?
When I converted to OpenSUSE 11.2, and went through YaST HTTP Server Configuration, creating my virtual hosts under the Hosts tab, YaST combinedm all int ile,"/etc/apache2/vhosts.d/ip-based_vhosts.conf".I did google and read, [URL]for further assistance.I'd like each virtual host to have its own file under vhosts.d, and wondering why YaST did not do that.The file /etc/apache2/httpd.conf laid out the file structure, and all vhosts.d/*.conf files are included.Is there a way to tell YaST to create separate files for each vhost, or does the user have to manually do it?
View 5 Replies View RelatedI was having a discussion with someone who asked me whether a Linux OS has to be rebooted when the hosts file is modified. From personal experience, on Windows I change the file but don't reboot and I've seen others do the same thing. I assume Linux has no exception(s), but is there any reason why a reboot is not required (to at least justify my actions)?
View 2 Replies View RelatedIs it possible to have different /etc/hosts file for different network connections without having to go in and change it every time? The why: I have dyndns and port forwarding to get to my desktop. My laptop is sometimes on the same network, and sometimes not. Also, sometimes the dyndns doesn't update properly, or the outside connection is down, but I want to get to my desktop (and I'm too lazy to walk up the stairs). I'd like to be able to keep one set of bookmarks, ssh command aliases, etc. that would always get to it the fastest and most reliable way possible.
View 1 Replies View Related