Bug 11612 - hosts.deny doesn't do option shell stuff.
Summary: hosts.deny doesn't do option shell stuff.
Keywords:
Status: CLOSED NOTABUG
Alias: None
Product: Red Hat Linux
Classification: Retired
Component: tcp_wrappers
Version: 6.2
Hardware: i386
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Preston Brown
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2000-05-23 18:52 UTC by Robert Thomas
Modified: 2008-05-01 15:37 UTC (History)
0 users

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2000-07-14 16:12:51 UTC
Embargoed:

Attachments (Terms of Use)

Description Robert Thomas 2000-05-23 18:52:06 UTC 
in hosts.deny, there is an optional field that allows you to do a command
shell (i.e. the last field).  I have it send me mail - like so:

in.ftpd :       ALL     :       (/usr/sbin/safe_finger -l @%h |
/usr/bin/Mail -s %d-%h thoma041.gov ) &

And hosts.allow has nothing in it ('cept the stuff that came in there from
RH).

If I grab Wietse's distribution of the wrappers (7.6 which is fairly old)
off of Porcupine, this works fine - it does the finger on the remote host
and mails it to me.

Also, the version that comes standard doesn't seem to be paranoid enough
(even on the enterprise w/ssl dist).  This may be intentional.

-Robert
Comment 1 Henri Schlereth 2000-07-14 16:12:50 UTC 
I have this in mine.

ALL : ALL: spawn (echo Probe from %h to %d at `date` | tee -a /var/log/tcpdeny.l
og |mail root )
Comment 2 Jeff Johnson 2000-07-27 22:05:34 UTC 
This smells like incorrect syntax used in hosts.deny. Please reopen if I'm
wrong.
Note You need to log in before you can comment on or make changes to this bug.