[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-developers] Deny IP Address On Raq 4r

Subject: RE: [cobalt-developers] Deny IP Address On Raq 4r
From: "Peter Baldwin" <peterj@xxxxxxxxxxxxxx>
Date: Wed Sep 19 11:14:38 2001
List-id: Discussion Forum for developers on Sun Cobalt Networks products <cobalt-developers.list.cobalt.com>

> > I tried hosts.deny but nothing!! I even rebooted but nothing!! I had the
> > following entry:
> >
> > ALL: IP_ADDRESS
> >
> Hi Kal,
> You need to review your chapter on the tcp-wrappers :-))
> hosts.allow and hosts.deny are only used for servers that runs
> via the inetd
> server ( or xinted on the newer RH distributions ).
> And Apache isn't run via inetd, because of performance reasons.

Mostly true :)

You can add tcp-wrappers to any program - including standalone servers that
do not use inetd.  In fact, the SSH package from pkg.nl.cobalt.com is
tcp_wrapper aware!

Aside - you can limit SSH connections from a specific IP (or IP range)...
add:
"sshd: ALL" in /etc/hosts.deny
"sshd: w.x.y.z" in /etc/hosts.allow, where w.x.y.z is an IP/IP range

Careful typing in the IP, or you may lock yourself out.  You may even want
to temporarily turn telnet back on while playing around ;-)

Cheers!
Peter

__________________________________________________
Vito - Cobalt Server Appliance Monitor and Manager
http://vito.pointclark.net

Follow-Ups:
- RE: [cobalt-developers] Deny IP Address On Raq 4r
  - From: KAMRY

References:
- Re: [cobalt-developers] Deny IP Address On Raq 4r
  - From: Marco Baurdoux

Prev by Date: RE: [cobalt-developers] RaQ3 kernel oops
Next by Date: Re: [cobalt-developers] Neomail 1.25-3.pkg
Previous by thread: Re: [cobalt-developers] Deny IP Address On Raq 4r
Next by thread: RE: [cobalt-developers] Deny IP Address On Raq 4r

Sun Cobalt Developers Message Index

Sun Cobalt Developers Thread Index