Sharing hosts.deny
Angus MacGyver
macgyver at calibre-solutions.co.uk
Mon Oct 25 08:52:23 UTC 2010
On Sun, 2010-10-24 at 21:12 -0500, Jordon Bedwell wrote:
> On 10/24/2010 08:41 PM, Michael wrote:
> > On 10/22/2010 01:16 AM, Tapas Mishra wrote:
> >> I wanted to know if there is any place where people have shared these
> >> IPs which needs to be blocked I feel most of the time the entries must
> >> be common though not always.So if hosts.deny file is shared some where
> >> then give a link.(I do use auth.log to note IPs to block)
> >>
> >>
> >
> > I have a bunch of entries in my hosts file with the 127.0.0.1 line
> > added. I have always seen the hosts.deny and hosts.allow files but
> > never know how to use them. When I google hosts.deny it says something
> > about blocking a range of IP addresses. Is it safe to assume that using
> > hosts.deny is more effective/better than just adding entries to the
> > hosts file?
>
> /etc/hosts = hostnames (EXP 127.0.0.1 to localhost)
> /etc/hosts.deny = hosts that are to be banned
> /etc/hosts.allow = hosts that are allowed
> Allow trumps deny. Deny can be paranoid.
>
Put "ALL" in hosts.deny, and open up selectively in hosts.allow..
But not a substitute for a proper firewall.
~£0.013
--
AM
More information about the ubuntu-users
mailing list