Hello, Jerzy!
On Sat, 16 Oct 1999 [EMAIL PROTECTED] wrote:
>I tried add the following line there:
>ALL: my.ip.address/255.255.255.255
>and... nothing happened. I can still access the host.
>What is the reason? Incorrect syntax? Or the program
>which is to recognize the entry, needs some signal
>to re-read the file (or worse, must be restarted)?
>Can anyone give me the information?
Depends on what service you used.
Check this service is inetd and wrapper is called (/etc/inetd.conf)
>And, yet again question: is there some public domain
>program, which can be used to check incoming request,
>and in case it seems to be hacker attack, add proper
>entry to hosts.deny to reject any further requests?
Yes, it's part of wrapper package and is called tcpdmatch:
[root@phoenix]~# tcpdmatch telnet ftp.funet.fi
warning: REAL_DAEMON_DIR /usr/sbin/...: No such file or directory
warning: telnet: no such process name in /etc/inetd.conf
client: hostname nic.funet.fi
client: address 128.214.248.6
server: process telnet
matched: /etc/hosts.deny line 15
command: spawn (/usr/sbin/safe_finger @nic.funet.fi >>/var/log/secure) &
access: denied
Bye.
--
Peace cannot be kept by force; it
can only be achieved by understanding.
-- A. Einstein
--
With best of best regards, Pawel S. Veselov (aka Black Angel)
Web page : http://i.am/BlackAngel | ICQ UIN : 5252265
Internet e-mail : [EMAIL PROTECTED]
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
