Re: [TriLUG] hosts.deny problem

Wed, 08 Mar 2006 21:15:23 -0800

I am learning all the time. IP Tables has beat me to pieces!!!! I cannot get that in my head for anything!!!! I would love to know how to use it but ......... 

WA Brown
----- Original Message ----- From: "paul" <[EMAIL PROTECTED]> 
To: "Triangle Linux Users Group discussion list" <[email protected]>
Sent: Thursday, March 09, 2006 12:04 AM
Subject: Re: [TriLUG] hosts.deny problem


On 3/8/06, WA Brown <[EMAIL PROTECTED]> wrote:

I am still having a problem. I am listing what my hosts deny file has and
the report. It only blocked one site. Can you tell me what I have wrong?


     # protocol: IP address or wildcard
        #  smtp: 216.27.9.180
        #  sshd: 70.85.111.114
        #  ALL: .trilug.org

            ALL: 61.134.32.*
            All: 211.171.*.*
            All: 61.220.*.*
            All: 212.71.*.*
            All: 213.179.*.*
            All: 81.25.*.*
            All: 216.180.225.162
            All: 219.107.*.*
            All: 68.3.31.253
            All: 66.228.*.*
            All: 24.162.142.170
            All: 217.174.*.*
            All: 66.70.*.*
            All: 125.248.*.*
            All: 210.241.*.*
            All: 159.169.*.*
            All: 216.228.*.*
            All: 23.13.158.72
            All: 125.*.*.*
            All: 66.235.*.*
            All: 61.31.*.*
            All: 217.37.72.233


This to me seems more like proper syntax. Notice the one it blocked
with your conf file was the first entry you had in there.. Meaning it
saw ALL and stopped reading.

ALL: 61.134.32., 211.171., 61.220., 212.71., 213.179., 81.25.,
216.180.225.162, 219.107., 68.3.31.253, 66.228., 24.162.142.170,
217.174., 66.70., 125.248., 210.241., 159.169., 216.228.,
23.13.158.72, 125., 66.235., 61.31., 217.37.72.233

I am sure by now someone has told you to read the manual, but "man
tcp-wrappers" produces nothing, right? In the case that you don't yet
know, the manual also includes config files. "man hosts.deny" will
show you the options for that particular configuration file.

In addition, the documentation in /usr/share/doc is second to none for
installed applications that provide it. When you get into kernel mods
or other problems that you may have in that realm, there is a doc
directory in the kernel source tarball as well.

On another note, you may want to start reading some about iptables.
Using a host firewall is not a bad idea to thwart such connection
attempts to your server.

Hope that's helpful.
--
TriLUG mailing list        : http://www.trilug.org/mailman/listinfo/trilug
TriLUG Organizational FAQ  : http://trilug.org/faq/
TriLUG Member Services FAQ : http://members.trilug.org/services_faq/


--
TriLUG mailing list        : http://www.trilug.org/mailman/listinfo/trilug
TriLUG Organizational FAQ  : http://trilug.org/faq/
TriLUG Member Services FAQ : http://members.trilug.org/services_faq/

Reply via email to