if i can secure my box with hosts.allow file, why do i then need iptables to secure mybox. what i can effectively block with iptables, can i also do the same with hosts.allow?
Arvind ----- Original Message ----- From: "Suresh Ramasubramanian" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, May 16, 2002 12:24 PM Subject: Re: [LIH]logwatch logs | "Arvind" <[EMAIL PROTECTED]> writes: | | > can i stop all such scanning with iptables ? | | 1. If you dont need sshd, don't run it | | 2. Otherwise, use either hosts.allow (ssh is compiled with tcpwrappers, | generally) or iptables to restrict access to sshd to known and | trusted IPs. | | 3. If you are anyway running a secure sshd, and an IDS like snort, | forget it. Portscans are a dime a dozen, most of them poking around | for stuff like old sendmails, sunrpc, ftp etc. | | -srs | | -- | Suresh Ramasubramanian <----> mallet <at> efn dot org | EMail Sturmbannfuhrer, Lower Middle Class Unix Sysadmin | [Linux One Stanza Tip] From : <[EMAIL PROTECTED]> | LOST #155 -**< Sub : Line numbering your programs (#5) >**- | Want a listing of your program with line numbers ? vi clones | on Linux can do it directly !!! In command mode of vim/ elvis | or nvi, type: ':set number' (or, ':se nu')... and to turn off | numbering during edit ':set nonumber' (or, ':se nonu'). | | _______________________________________________________________ | | Have big pipes? SourceForge.net is looking for download mirrors. We supply | the hardware. You get the recognition. Email Us: [EMAIL PROTECTED] | _______________________________________________ | linux-india-help mailing list | [EMAIL PROTECTED] | https://lists.sourceforge.net/lists/listinfo/linux-india-help _______________________________________________________________ Have big pipes? SourceForge.net is looking for download mirrors. We supply the hardware. You get the recognition. Email Us: [EMAIL PROTECTED] _______________________________________________ linux-india-help mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/linux-india-help
