[991] in linux-net channel archive
Re: /etc/hosts.deny
daemon@ATHENA.MIT.EDU (James Crawford Ralston)
Sat Aug 26 09:46:34 1995
Date: Thu, 24 Aug 1995 11:16:49 -0400 (EDT)
From: James Crawford Ralston <qralston+@pitt.edu>
To: Andrew Crawford <andrew@cludge.colloquium.co.uk>
CC: linux-net@vger.rutgers.edu
In-Reply-To: <Pine.LNX.3.91.950822211409.200A-100000@cludge>
Excerpts from infidelbb.linux.net: 22-Aug-95 /etc/hosts.deny Andrew
Crawford@cludge.c (320*)
> I'm trying to block access to all ports from a particular host. Putting
> the hostname in /etc/hosts.deny doesn't seem to have any effect - even
> after a reboot. Any idea why, or what I'm doiong wrong?
From hosts_access(5):
ACCESS CONTROL FILES
The access control software consults two files. The search
stops at the first match:
+ Access will be granted when a (daemon,client) pair
matches an entry in the /etc/hosts.allow file.
+ Otherwise, access will be denied when a (daemon,client)
pair matches an entry in the /etc/hosts.deny file.
+ Otherwise, access will be granted.
A non-existing access control file is treated as if it were
an empty file. Thus, access control can be turned off by
providing no access control files.
I suspect you probably have an entry in /etc/hosts.allow which is
matching the host you're trying to reject in /etc/hosts.deny.
James
