From b1be9320f38dc475ec8c22eb7e86bf95ed62b82b Mon Sep 17 00:00:00 2001 From: "Jordan K. Hubbard" Date: Thu, 17 Feb 2000 04:52:23 +0000 Subject: [PATCH] The default rule in this file actually sent mail to root as its default action when denying access to a service. Unfortunately, this also makes a dandy denial-of-service attack possible. Change to just log the event and shoot a "go away" response back down the socket. --- etc/hosts.allow | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/etc/hosts.allow b/etc/hosts.allow index 4b96efbe9516..2f99941f91c7 100644 --- a/etc/hosts.allow +++ b/etc/hosts.allow @@ -65,8 +65,7 @@ fingerd : ALL \ /usr/bin/mail -s "tcpd\: %u@%h[%a] fingered me!" root) & \ : deny -# The rest of the daemons are protected. Backfinger and log by email. +# The rest of the daemons are protected. ALL : ALL \ - : severity auth.info : spawn (/usr/bin/finger -l @%h | \ - /usr/bin/mail -s "tcpd\: %u@%h[%a] tried to use %d (denied)" root) & \ + : severity auth.info \ : twist /bin/echo "You are not welcome to use %d from %h."