On Sun, Nov 28, 1999 at 12:03:12PM -0800, Denis Voitenko wrote:
> I have the following problem. I have Apache running on an Intranet machine
> that is also connected to the Internet. I run it as a standalone daemon, not
> from inetd. Although my /etc/hosts.deny looks like
> all:all
> and /etc/hosts.allow looks like
> 192.168.0.:all, Apache is still visible from the Internet. How would I deny
> access to it from outside?
Apache does not look in the hosts.allow, tcpd does.
You have the choice of running apache from inetd, with
the tcpd wrapper between it (Wow, the worst possible advice
i could possible give you!)
or read the manual of apache and setup a deny/allow pair for
your range ala:
deny all
allow 192.168.0/24
and lastly; make an ipchains firewall blocking rule which denies
IP packets from the outside world to port 80 to the machine.
Met vriendelijke groet,
Pauline Middelink
--
PGP Key fingerprint = DE 6B D0 D9 19 AD A7 A0 58 A3 06 9D B6 34 39 E2
For more details look at my website http://www.polyware.nl/~middelin
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
