[ale] Random Linux tip (ldd)

Michael Still stillwaxin at gmail.com
Wed Apr 26 14:28:12 EDT 2006


I deployed DenyHosts to a bunch of machines recently.  All went well
in my test environment, but the boxes I deployed to had a different
sshd package on them that was hand-rolled instead of a vendor provided
package.  So I found that when hosts were still being allowed to
connect to sshd after being added to the hosts.deny file I became
suspicious.  The command I used to determine if TCP Wrapper support
was compiled in was 'ldd'.  Since libwrap didn't show up I knew that
this sshd was not compiled with TCP Wrappers support and I would have
to install a different one.

TCP Wrappers compiled in:
# ldd `which sshd`
        libwrap.so.0 => /lib/libwrap.so.0 (0xb7f95000)
        libpam.so.0 => /lib/libpam.so.0 (0xb7f8d000)
        libdl.so.2 => /lib/libdl.so.2 (0xb7f89000)
        libutil.so.1 => /lib/libutil.so.1 (0xb7f86000)
        libz.so.1 => /usr/lib/libz.so.1 (0xb7f78000)
        libnsl.so.1 => /lib/libnsl.so.1 (0xb7f64000)
        libcrypto.so.0.9.6 => /usr/lib/libcrypto.so.0.9.6 (0xb7ea4000)
        libc.so.6 => /lib/libc.so.6 (0xb7d87000)
        libcrypt.so.1 => /lib/libcrypt.so.1 (0xb7d5a000)
        /lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0xb7fa1000)

Not compiled in:
# ldd `which sshd`
        libpam.so.0 => /lib/libpam.so.0 (0x40017000)
        libdl.so.2 => /lib/libdl.so.2 (0x4001f000)
        libresolv.so.2 => /lib/libresolv.so.2 (0x40023000)
        libcrypto.so.0.9.6 => /usr/lib/libcrypto.so.0.9.6 (0x40033000)
        libutil.so.1 => /lib/libutil.so.1 (0x400f3000)
        libz.so.1 => /usr/lib/libz.so.1 (0x400f6000)
        libnsl.so.1 => /lib/libnsl.so.1 (0x40104000)
        libcrypt.so.1 => /lib/libcrypt.so.1 (0x40118000)
        libc.so.6 => /lib/libc.so.6 (0x40145000)
        /lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)
--
[stillwaxin at gmail.com ~]$ cat .signature
cat: .signature: No such file or directory
[stillwaxin at gmail.com ~]$



More information about the Ale mailing list