On Tue, 7 Nov 2000, Al Sparks wrote:
> --- Roger Walker <[EMAIL PROTECTED]> wrote:
>
> > I immediately added this host to my /etc/hosts.deny file for
> > tcp-env and the connections stopped after the first two refusals.
>
> A good security practice is to deny everything in your hosts.deny file,
> and make specific exceptions to that policy in your hosts.allow file.
Yes, but when you could legimately accept real email from
anywhere, that's not a policy for an email server (for smtp connections,
at least). In this case, one needs to allow all smtp by default, but
deliberately screen out known (spam) offenders).
--
Roger Walker <http://www.rat-hole.com>
Voice/Fax 1-780-440-2685 <http://www.man-from-linux.com>
"HIS Pain; YOUR Gain" <http://www.rope.net>
<http://www.rope.net/signature.html>
