Red Hat Bugzilla – Bug 249430
hosts.allow 255.255.255.255 netmask broken for localhost
Last modified: 2012-06-20 09:22:55 EDT
Description of problem: hosts.allow net/mask pattern does not work as expected, at least while using sendmail Version-Release number of selected component (if applicable): # rpm -qa | grep tcp_wrappers tcp_wrappers-7.6-37.2 tcp_wrappers-7.6-37.2 note: twice? How reproducible: Every time Steps to Reproduce: 1. add "ALL: ALL" to /etc/hosts.deny 2. add "sendmail: 127.0.0.1/255.255.255.255" to /etc/hosts.allow 3. #chkconfig sendmail on; service sendmail start 4. #echo "testing" | mail -s "Test" me@mymail.com 5. check /var/log/maillog Actual results: Jul 24 11:48:38 __ sendmail[21230]: ____________: tcpwrappers (___________, 127.0.0.1) rejection Expected results: tcpwrappers to allow sendmail: 127.0.0.1 Additional info: sendmail: 126.0.0.1/254.255.255.255 works, but sendmail: 126.0.0.1/255.255.255.255 does NOT work either if 126/254 succeeds, why does neither 127/255 nor 126/255 work?
Easyfix: http://cvs.fedora.redhat.com/viewcvs/*checkout*/rpms/tcp_wrappers/devel/tcp_wrappers_7.6-249430.patch?rev=1.1
The fix is really simple, but won't make it to 4.6. Please, use just "127.0.0.1" instead.
This request was evaluated by Red Hat Product Management for inclusion, but this component is not scheduled to be updated in the current Red Hat Enterprise Linux release. If you would like this request to be reviewed for the next minor release, ask your support representative to set the next rhel-x.y flag to "?".
Thank you for submitting this issue for consideration in Red Hat Enterprise Linux. The release for which you requested us to review is now End of Life. Please See https://access.redhat.com/support/policy/updates/errata/ If you would like Red Hat to re-consider your feature request for an active release, please re-open the request via appropriate support channels and provide additional supporting details about the importance of this issue.