[Techtalk] SSHD default config questions

[Nicoya Helm]

I just installed ssh2 on a rh7.1 box.  I compiled it with tcp-wrapper support enabled because, well, because I thought it'd be cool to just be able to edit my main hosts.allow list.  Now that it's installed, I'm running into two problems.

1.  Having not made any config changes, just starting up the ssh2 daemon fresh after install, it is allowing 3 password attempts - but does not disconnect after the 3rd attempt.  It just hangs.  I have not been able to figure out where this default is coming from, because right now my sshd2_config file, including the PasswordGuesses line, is commented out.

2.  When I compiled, tcp-wrappers did appear to be enabled at the end.  However, I edited my /etc/hosts.allow with this line:

sshd2: 196.178.20.0/255.255.255.0.  

restarted my tcpd and my sshd, but it's still allowing all hosts. Someone suggested to me to do an ldd on my sshd2 and ssh2 to make sure it was referencing the libwrap.a library.  I've done this and do not see any evidence of libwrap being referenced.

Any ideas?  I'll be happy to email more details if necessary, as I'm not finding a whole lot of up-to-date info on ssh/tcpwrappers configuration issues.

~~~Nicoya...