[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: /etc/host.deny and co

On Tue, Oct 27, 1998 at 09:52:28AM -0500, Linh Dang wrote:

 : I want to deny telnet, ftp and smtp connection from ANY other sites.  But
 : I want to accept http connection, pull down pop3, imap and send out mail
 : (smtp).
 : How do I setup /etc/host.deny, /etc/host.allow and CO. I will RTFM but
 : since security is so important (that why I choose Debian) I'd like to
 : hear all the tips, tricks and know all traps, pitfalls...

Though you could indeed use the tcpwrappers package (/usr/sbin/tcpd et al.)
which uses those files.

Another way, which I'd prefer, is using ipfwadm to build a packet filter
which just blocks every packet not matching the criteria you mentioned


Reply to: