> How do I set the hosts.allow for only class B address?
The simple way is to add this line to: /etc/hosts.deny
ALL:ALL EXCEPT LOCAL:DENY
And then add these (example) lines to: /etc/hosts.allow
ALL : 127.0.0.1 : allow
ALL : 192.168.1. : allow
sshd : 136.159. : allow
# in.ftpd : 136.159.34. : allow
# in.telnetd : 136.159.34.205 : allow
in.fingerd : ALL : ALLOW
#
# catch all rejected attempts
ALL : ALL : spawn (/usr/sbin/safe_finger -l @%h | /bin/mail -s "(mysite) Port
denial %d-%h [%a]" root) & : DENY
The line 127.0.0.1 is redundant but safer.
I use 192.168.1. for my LAN behind the server firewall.
I don't allow ftp or telnet, although I use SFTP via ssh.
The fingerd and 'catch all' lines are great, since it will report to you all
the boneheads out there who are port scanning trying to possibly gain access.
Along with PortSentry, these boneheads are automatically banned from future
attempts by setting ipchains/iptables to DENY any further responses.
If you're using LM 7.2 or 8.0, I would suggest looking into xinetd, instead
of using inetd.
Thanks... Dan.
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
