Quoting James Westby (jw+debian@jameswestby.net): > > Template: tcpd/paranoid-mode > > Type: boolean > > Default: false > > _description: Use paranoid settings in hosts.allow and hosts.access? > > New /etc/hosts.allow and /etc/hosts.deny files for the TCP wrappers > > daemon (tcpd) will be created as they do not exist yet. > > Is it intended to have hosts.access in the short description and > hosts.deny in the long? Nice spot. I'm unsure about that. Let's ask the maintainer. Marco? > > > > Description: Wietse Venema's TCP wrapper utilities > > Wietse Venema's network logger, also known as TCPD or LOG_TCP. > > . > > These programs log the client host name of incoming telnet, > > ftp, rsh, rlogin, finger etc. requests. Security options are: > > access control per host, domain and/or service; detection of > > host name spoofing or host address spoofing; booby traps to > > implement an early-warning system. > > > > This doesn't seem write to me. It is called a logger, but then says that > it has security options so it seems to do more than that. > > Also the list with semicolons is unusual, but I see why it is done. It > can probably be rewritten to avoid this. I will send a diff if I come up > with something satisfactory. A bulleted list? Security options are: - access control per host, domain and/or service; - detection of host name spoofing or host address spoofing; - booby traps to implement an early-warning system.
Attachment:
signature.asc
Description: Digital signature