[TriLUG] hosts.deny problem

WA Brown brownwa at ftc-i.net
Thu Mar 9 00:15:12 EST 2006 

I am learning all the time. IP Tables has beat me to pieces!!!! I cannot get 
that in my head for anything!!!! I would love to know how to use it but 
.........

WA Brown


----- Original Message ----- 
From: "paul" <ppeeler at gmail.com>
To: "Triangle Linux Users Group discussion list" <trilug at trilug.org>
Sent: Thursday, March 09, 2006 12:04 AM
Subject: Re: [TriLUG] hosts.deny problem


On 3/8/06, WA Brown <brownwa at ftc-i.net> wrote:
> I am still having a problem. I am listing what my hosts deny file has and
> the report. It only blocked one site. Can you tell me what I have wrong?
>
>
>      # protocol: IP address or wildcard
>         #  smtp: 216.27.9.180
>         #  sshd: 70.85.111.114
>         #  ALL: .trilug.org
>
>             ALL: 61.134.32.*
>             All: 211.171.*.*
>             All: 61.220.*.*
>             All: 212.71.*.*
>             All: 213.179.*.*
>             All: 81.25.*.*
>             All: 216.180.225.162
>             All: 219.107.*.*
>             All: 68.3.31.253
>             All: 66.228.*.*
>             All: 24.162.142.170
>             All: 217.174.*.*
>             All: 66.70.*.*
>             All: 125.248.*.*
>             All: 210.241.*.*
>             All: 159.169.*.*
>             All: 216.228.*.*
>             All: 23.13.158.72
>             All: 125.*.*.*
>             All: 66.235.*.*
>             All: 61.31.*.*
>             All: 217.37.72.233

This to me seems more like proper syntax. Notice the one it blocked
with your conf file was the first entry you had in there.. Meaning it
saw ALL and stopped reading.

ALL: 61.134.32., 211.171., 61.220., 212.71., 213.179., 81.25.,
216.180.225.162, 219.107., 68.3.31.253, 66.228., 24.162.142.170,
217.174., 66.70., 125.248., 210.241., 159.169., 216.228.,
23.13.158.72, 125., 66.235., 61.31., 217.37.72.233

I am sure by now someone has told you to read the manual, but "man
tcp-wrappers" produces nothing, right? In the case that you don't yet
know, the manual also includes config files. "man hosts.deny" will
show you the options for that particular configuration file.

In addition, the documentation in /usr/share/doc is second to none for
installed applications that provide it. When you get into kernel mods
or other problems that you may have in that realm, there is a doc
directory in the kernel source tarball as well.

On another note, you may want to start reading some about iptables.
Using a host firewall is not a bad idea to thwart such connection
attempts to your server.

Hope that's helpful.
-- 
TriLUG mailing list        : http://www.trilug.org/mailman/listinfo/trilug
TriLUG Organizational FAQ  : http://trilug.org/faq/
TriLUG Member Services FAQ : http://members.trilug.org/services_faq/

More information about the TriLUG mailing list