[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Performance / hosts.deny

Subject: Re: [cobalt-users] Performance / hosts.deny
From: shimi <shimi@xxxxxxxxxxxxxxxx>
Date: Sat Jun 23 09:41:48 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

On Sun, 24 Jun 2001, Andrew Mace wrote:

> Hi People,
> How Would I deny Port 443 for everything except localhost in hosts.deny
> 
> Regards
> Andy

Andy, IIRC the http server doesn't give a damn about hosts.deny...
You'll either have to restrict that in the http server configuration, but
then people will be able to make initial connect, or, close it via
IPchains..

If you're woking with IPchains, the right command to do that, will be, in
my opinion:

ipchains -A input -s 0.0.0.0/0 -d 0.0.0.0/0 443 -y -j REJECT

as usual, don't try ipchains stuff unless you have physical access to the
machine to flush them later (ipchains -F)/boot the machine (never put in
startup script without veirfying first)

HTH,

- shimi.

Follow-Ups:
- Re: [cobalt-users] Performance / hosts.deny
  - From: Andrew Mace
- Re: [cobalt-users] Performance / hosts.deny
  - From: Andrew Mace

References:
- Re: [cobalt-users] Performance / hosts.deny
  - From: Andrew Mace

Prev by Date: Re: [cobalt-users] [MORE] DNS problems.
Next by Date: Re: [cobalt-users] Performance / hosts.deny
Previous by thread: Re: [cobalt-users] Performance / hosts.deny
Next by thread: Re: [cobalt-users] Performance / hosts.deny

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index