Alexander Kushnirenko [EMAIL PROTECTED] writes:
I'm actually using the IP firewall code in Linux 2.2.0-pre5 to provide
most of the protection to my system. My ipchains rules are as follows
(actually saved in /etc/ipchains.save and read by ipchains-restore in
/etc/init.d/network).
Hi, Carey!
Thanks for your detailed answers,
[snip]
DNS names and DNS servers being down, so, for example, I have a line:
ALL : 127.0.0.1 192.168.117. : ALLOW
Good point, I switched to them.
[snip]
I'm actually using the IP firewall code in Linux 2.2.0-pre5 to provide
most of the
Alexander Kushnirenko [EMAIL PROTECTED] writes:
[snip]
1. Does it have some striking errors? I bet I forgot some service...
I prefer to put the denies in /etc/hosts.allow as well; something
like:
ALL : ALL : DENY
at the end, to catch anything not explicitly allowed.
I also prefer to use IP
- Thanks for the comments, But would wrapping Apache do any good? AFAIK
- wrapping works only when daemon starts and Apache is sort of always on?
-
- I would not suggest running a web server from inetd. If the web server
- persists after the first connection, that is fine, but you are
Hi,
We try to set mostly closed system for Debian slink boxes that operate
primarily as X-terminals. So it has in hosts.deny ALL:ALL
Here what I set in hosts.allow:
#
ALL : localhost
in.telnetd : .our.network : allow
sshd: .our.network : allow
in.ftpd : .our.network :
Questions:
1. Does it have some striking errors? I bet I forgot some service...
Looks sane. Be aware that hosts.allow only covers inetd started daemons. So
if you run apache as a stand alone daemon you have to config it separately.
On Thu, Jan 07, 1999 at 05:39:30PM -0500, Shaleh wrote:
Questions:
1. Does it have some striking errors? I bet I forgot some service...
Looks sane. Be aware that hosts.allow only covers inetd started daemons. So
if you run apache as a stand alone daemon you have to config it separately.
Hi,
Thanks for the comments, But would wrapping Apache do any good? AFAIK
wrapping works only when daemon starts and Apache is sort of always on?
Sasha.
On Thu, Jan 07, 1999 at 05:39:30PM -0500, Shaleh wrote:
Questions:
1. Does it have some striking errors? I bet I forgot some
On Thu, Jan 07, 1999 at 04:56:32PM -0600, Alexander Kushnirenko wrote:
Hi,
Thanks for the comments, But would wrapping Apache do any good? AFAIK
wrapping works only when daemon starts and Apache is sort of always on?
I would not suggest running a web server from inetd. If the web server
9 matches
Mail list logo
