[985] in linux-net channel archive
Re: /etc/hosts.deny
daemon@ATHENA.MIT.EDU (Michael Brennen)
Thu Aug 24 05:40:42 1995
Date: Wed, 23 Aug 1995 13:37:25 -0500 (CDT)
From: Michael Brennen <mbrennen@puddytat.intecom.com>
To: Andrew Crawford <andrew@cludge.colloquium.co.uk>
cc: linux-net@vger.rutgers.edu
In-Reply-To: <Pine.LNX.3.91.950822211409.200A-100000@cludge>
On Tue, 22 Aug 1995, Andrew Crawford wrote:
>
> I'm trying to block access to all ports from a particular host. Putting
> the hostname in /etc/hosts.deny doesn't seem to have any effect - even
> after a reboot. Any idea why, or what I'm doiong wrong?
Well, this might seem pedantic, but are you running tcp_wrappers?
hosts.allow and hosts.deny are the config files for tcp_wrappers; for them
to be effective you must run the target daemon frontended by tcpd, which
is typically done through inetd (config file is inetd.conf).
If you need tcp_wrappers, get version 7.2 from
ftp://ftp.win.tue.nl/pub/security
I think the pub/security directory is correct.
Hope this doesn't insult, but it was not clear from the original post. I
run tcp_wrappers, and it is quite effective. You might think about
picking up logdaemon-4.9 also.
Michael Brennen
