On 3/8/06, WA Brown <[EMAIL PROTECTED]> wrote: > I am still having a problem. I am listing what my hosts deny file has and > the report. It only blocked one site. Can you tell me what I have wrong? > > > # protocol: IP address or wildcard > # smtp: 216.27.9.180 > # sshd: 70.85.111.114 > # ALL: .trilug.org > > ALL: 61.134.32.* > All: 211.171.*.* > All: 61.220.*.* > All: 212.71.*.* > All: 213.179.*.* > All: 81.25.*.* > All: 216.180.225.162 > All: 219.107.*.* > All: 68.3.31.253 > All: 66.228.*.* > All: 24.162.142.170 > All: 217.174.*.* > All: 66.70.*.* > All: 125.248.*.* > All: 210.241.*.* > All: 159.169.*.* > All: 216.228.*.* > All: 23.13.158.72 > All: 125.*.*.* > All: 66.235.*.* > All: 61.31.*.* > All: 217.37.72.233
This to me seems more like proper syntax. Notice the one it blocked with your conf file was the first entry you had in there.. Meaning it saw ALL and stopped reading. ALL: 61.134.32., 211.171., 61.220., 212.71., 213.179., 81.25., 216.180.225.162, 219.107., 68.3.31.253, 66.228., 24.162.142.170, 217.174., 66.70., 125.248., 210.241., 159.169., 216.228., 23.13.158.72, 125., 66.235., 61.31., 217.37.72.233 I am sure by now someone has told you to read the manual, but "man tcp-wrappers" produces nothing, right? In the case that you don't yet know, the manual also includes config files. "man hosts.deny" will show you the options for that particular configuration file. In addition, the documentation in /usr/share/doc is second to none for installed applications that provide it. When you get into kernel mods or other problems that you may have in that realm, there is a doc directory in the kernel source tarball as well. On another note, you may want to start reading some about iptables. Using a host firewall is not a bad idea to thwart such connection attempts to your server. Hope that's helpful. -- TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug TriLUG Organizational FAQ : http://trilug.org/faq/ TriLUG Member Services FAQ : http://members.trilug.org/services_faq/
