[wplug] wu-ftpd?
harrold at sage.che.pitt.edu
harrold at sage.che.pitt.edu
Wed May 16 13:16:50 EDT 2001
On Wed, 16 May 2001 harrold at sage.che.pitt.edu wrote:
>
> i normally use wuftp +tcp wrappers. if you are signed up to get the redhat
> eratta then things should be ok. then when there is a problem you update
> it just like any service. you can use tcp wrappers, or ipchains/tables at
> the kernel level to filter out people who arent supposed to access your
> computer. tcp wrappers are a good idea reguardless of the service. they
> are really easy to set up.
>
> create a file in etc called hosts.deny and put the following line in it:
> ALL:ALL
>
> then noone can access the computer through the services started with
> inetd. to tell which computers can create a file in etc called hosts.allow
> and put something like this:
> ALL: .upmc.edu
> in.ftpd: .bellatlantic.net
> sshd: .some.domain.com 192.168.0.
>
> the ALL will let anyone whose ip address resloves to a .upmc.edu domain
> into all services. the in.ftpd line will let people from the bellatlantic
> domain ftp to the box. the in.sshd line will let anyone from the
> 192.158.0. subnet and the .come.domiain.com domain ssh to the box.
>
sorry. i just realized you said redhat 7.1. rh71 uses xinetd, and the
tcpwrappers stuff only works with inetd. you can do similar stuff with
xinetd. there is an xinetd.conf file in etc that sets up the default
config options (man xinetd.conf for specifics). then there is a directory
called /etc/xinetd.d where there is a config file for each service.
--
john
More information about the wplug
mailing list