On Sat, 5 Jul 2003, Daniel Senie wrote: > In present usage, hosts.deny isn't employed much. If your hosts.allow is > empty, then everything will be allowed. Most folks use: > > ALL: 127.0.0.1: ALLOW > > ALL: ALL: DENY > > at the end of their /etc/hosts.allow, then above those lines add ALLOW and > DENY statements as needed.
Several worms have targetted hosts.allow but left hosts.deny alone as a result. It's worthwhile putting at least a ALL:ALL in hosts.deny
