[NTLUG:Discuss] Hook SSHD into sendmail milter?
Greg Edwards
greg at nas-inet.com
Tue Jul 12 21:46:49 CDT 2005
Neil Aggarwal wrote:
>
> Is there a way to configure sshd to call a program to check whether
> an IP is allowed or not?
>
> I see that hosts_access in section 3 of the man pages has
> this function:
>
> int hosts_ctl(daemon, client_name, client_addr, client_user)
> char *daemon;
> char *client_name;
> char *client_addr;
> char *client_user;
>
> Is there a way to get sshd to call a program I write that implements
> this method?
>
> Thanks,
> Neil
>
Wouldn't it be easier to do through your firewall? Or are these IPs
inside? Using an iptables rule to reject those addresses should get the
trick done, if you're interested in that option.
I've got the SSH book on the shelf, but haven't read it yet so I couldn't
help with that.
--
Greg Edwards
New Age Software, Inc.
Custom software for an off the rack world
http://consult.nas-inet.com
More information about the Discuss
mailing list