Re: /etc/host.deny and co
On Tue, Oct 27, 1998 at 09:52:28AM -0500, Linh Dang wrote:
: I want to deny telnet, ftp and smtp connection from ANY other sites. But
: I want to accept http connection, pull down pop3, imap and send out mail
: How do I setup /etc/host.deny, /etc/host.allow and CO. I will RTFM but
: since security is so important (that why I choose Debian) I'd like to
: hear all the tips, tricks and know all traps, pitfalls...
Though you could indeed use the tcpwrappers package (/usr/sbin/tcpd et al.)
which uses those files.
Another way, which I'd prefer, is using ipfwadm to build a packet filter
which just blocks every packet not matching the criteria you mentioned