Re: Question about blocking IP's
- From: "yas_chan" <nestor_kun@xxxxxxxxxxx>
- Date: 31 Dec 2005 01:36:43 -0800
Now I understand! But let's say I want to run WWW service, and people
from different addresses would be using my system. If hosts.deny blocks
ALL those addresses which I didn't write to hosts.allow - how can
someone I don't know use my system?
----
Tcpwrappers first looks to see if access is permitted in
/etc/hosts.allow, and if so, access is granted. If not in
/etc/hosts.allow, the file /etc/hosts.deny is then checked to see if
access is not allowed. If so, access is denied. Else, access is
granted. For this reason, /etc/hosts.deny should contain only one
uncommented line, and that is: ALL: ALL. Access should then be
permitted through entries in /etc/hosts.allow, where specific services
are listed, along with the specific host addresses allowed to access
these services. While hostnames can be used here, use of hostnames
opens the limited possibility for name spoofing.
.
- Follow-Ups:
- Re: Question about blocking IP's
- From: Unruh
- Re: Question about blocking IP's
- From: yas_chan
- Re: Question about blocking IP's
- References:
- Question about blocking IP's
- From: nestor_kun
- Re: Question about blocking IP's
- From: Robert Harris
- Re: Question about blocking IP's
- From: yas_chan
- Re: Question about blocking IP's
- From: Moe Trin
- Re: Question about blocking IP's
- From: yas_chan
- Question about blocking IP's
- Prev by Date: Re: Question about blocking IP's
- Next by Date: Re: Question about blocking IP's
- Previous by thread: Re: Question about blocking IP's
- Next by thread: Re: Question about blocking IP's
- Index(es):
Relevant Pages
|
