> On 5/9/12 2:52 PM, Jerzy Łogiewa wrote: >> when building webserver I want only 127.0.0.1 able to connect - not the >> internet and not 192.168.x.x even! >> >> this is for hidden service _ONLY_ and no one even on local network should be >> able to probe for it. >> >> i know how to setup hidden service basically. how can i do this above with >> apache or lighttpd? if i want the same for ssh how can I do it using system? >> >> restrict all connections to 127.0.0.1 - and no tails please! :-D
In addition to Ralf's advice (which is correct), you can/should configure a firewall to prevent connections to port 80 and 443 (and really everything except how you connect to the box which is probably ssh) just to be double-safe. You can use iptables for this, but if iptables is really confusing to you, I personally use shorewall which abstracts iptables to configuration files that make (more) sense. -tom _______________________________________________ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk