| Subject | Re: RES: [ib-support] Where I find a really good security specificIB/FB group? |
|---|---|
| Author | Scott Taylor |
| Post date | 2002-07-17T14:27:37Z |
At 12:49 AM 17/07/2002, you wrote:
simple, even if you are running inetd. First, the line in the services
file to link the port to the services (entered by install) must be
there. Then /etc/inetd.conf needs to have a line pointing the service to
an actual file with whatever options and a wrapper name, then you should
allow access to that named wrapper, not just all. Also,
/etc/hosts.deny/allow files are very finicky in their syntax, get it wrong
and nothing works.
All that said and done, you should be using xinetd which is standard in the
newer distros, then see this article:
http://www.ibphoenix.com/netfradb/search.nfs?a=knowledgebase&l=;KNOWLEDGEBASE.PAGES;ID='490'
>"William L. Thomson Jr." wrote:Sorry, I missed the beginning of this thread. TCP Wrappers is not that
> >
> > > In an article on ibphoenix I read about /etc/gds_hosts.equiv to do
> > > similar task, but it didn't work when I tried it.
> >
> > You should have been using hosts.allow and hosts.deny
simple, even if you are running inetd. First, the line in the services
file to link the port to the services (entered by install) must be
there. Then /etc/inetd.conf needs to have a line pointing the service to
an actual file with whatever options and a wrapper name, then you should
allow access to that named wrapper, not just all. Also,
/etc/hosts.deny/allow files are very finicky in their syntax, get it wrong
and nothing works.
All that said and done, you should be using xinetd which is standard in the
newer distros, then see this article:
http://www.ibphoenix.com/netfradb/search.nfs?a=knowledgebase&l=;KNOWLEDGEBASE.PAGES;ID='490'