Mark Maas <[EMAIL PROTECTED]> wrote on 16.11.2004 08:50:57:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Hi All,
>
> I'm trying to restrict access to my ssh server from the outside to
> allow only two IP adresses and the internal lan ofcourse.
> And deny access to everyone else.
>
> People are trying the guess a username and password tactic a little
> too much to my liking...
>
> Do I use hosts.deny, hosts.allow for this? If so, which one takes
> precedence?
I use iptables, so that I do not have to worry about such things.
just allow the two addresses and drop all others...
If you like to use hosts.deny and hosts.allow, I believe that hosts.deny overrules hosts.allow. This is at least, how I experienced the two configs.
HTH,
Andy
> Thanks,
> Mark
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.3-nr1 (Windows 2000)
> Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
>
> iD8DBQFBmbFh8SFyUHWnEvMRAlDtAJ9JeyTiSUFts65XWd+1vXoPFLM+EQCfR+gL
> INqDUnU56gu08MuHy1OxZNQ=
> =Fa76
> -----END PGP SIGNATURE-----
>
>
> --
> To UNSUBSCRIBE, email to [EMAIL PROTECTED]
> with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
>
----------------------------------------------------------------------------
| Andreas Sumper
| Administration / Services / IT Security
| nimbus Development IT Consulting GmbH
| we unleash the power of domino
|
| Annenstrasse 30/1
| 8020 Graz
| Tel.: +43 (0) 316 714 255 -> DW 18
| Fax: +43 (0) 316 714 255 -> DW 4
| http://www.nimbus.at/
----------------------------------------------------------------------------
| sent through Lotus Notes 6.5.1
| using wine on a linux box
- Disabling access to SSH Mark Maas
- Re: Disabling access to SSH andreas . sumper
- Re: Disabling access to SSH Andreas Janssen
- Re: Disabling access to SSH Nikita V. Youshchenko
- Re: Disabling access to SSH Nick Hastings
- Re: Disabling access to SSH Pigeon
- Re: Disabling access to SSH Mark Janssen
- Re: Disabling access to SSH michael
- Re: Disabling access to SSH Mark Janssen
- Re: Disabling access to SSH Andreas Janssen
- Re: Disabling access to SSH michael
- Re: Disabling access to SSH Mark Maas