[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] Performance / hosts.deny
- Subject: Re: [cobalt-users] Performance / hosts.deny
- From: "Andrew Mace" <andy.mace@xxxxxxxxxx>
- Date: Sat Jun 23 10:09:07 2001
- List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>
lol, i actually meant 143 for IMAP, :)
would:
ipchains -A input -s 0.0.0.0/0 -d 0.0.0.0/0 143 -y -j REJECT
be right?
Cheers
Andy
----- Original Message -----
From: shimi <shimi@xxxxxxxxxxxxxxxx>
To: <cobalt-users@xxxxxxxxxxxxxxx>
Sent: Sunday, June 24, 2001 1:39 AM
Subject: Re: [cobalt-users] Performance / hosts.deny
>
> On Sun, 24 Jun 2001, Andrew Mace wrote:
>
> > Hi People,
> > How Would I deny Port 443 for everything except localhost in hosts.deny
> >
> > Regards
> > Andy
>
> Andy, IIRC the http server doesn't give a damn about hosts.deny...
> You'll either have to restrict that in the http server configuration, but
> then people will be able to make initial connect, or, close it via
> IPchains..
>
> If you're woking with IPchains, the right command to do that, will be, in
> my opinion:
>
> ipchains -A input -s 0.0.0.0/0 -d 0.0.0.0/0 443 -y -j REJECT
>
> as usual, don't try ipchains stuff unless you have physical access to the
> machine to flush them later (ipchains -F)/boot the machine (never put in
> startup script without veirfying first)
>
> HTH,
>
> - shimi.
>
> _______________________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> To Subscribe or Unsubscribe, please go to:
> http://list.cobalt.com/mailman/listinfo/cobalt-users
>