Need help with configuring hosts.allow and hosts.deny
I was reading the man pages for hosts.allow and hosts.deny, but have a hard time understanding how the naming convention for services works.
I want to add ALL: ALL in hosts.deny, and add rules to hosts.allow to enable the following ports ONLY access from outside:
httpd (port 80) access to all
smtp access (I use qmail)
and mysqld (3306)
I also have no idea how I can tell which services are being "supervised" by tcpwrapers. If I should make all my services run through xinetd instead/as well or not.
Basically, I want to secure up my box and need some help!
Thanks a bunch,
Re: Need help with configuring hosts.allow and hosts.deny
Originally Posted by the_mutha
sendmail : localhost : allow
ftpd: 192.168.1.1/255.255.255.0: allow
You can only use qmail with tcp_wrapper if it's starting from inetd. Qmail recommend you do not start it that way.
Why would you want to deny web viewers to your web site?
if you must deny use the .htaccess file .
Like the other auth mentioned, IPtable is a wise choice.