d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Clarify the disposition of hosts.deny and provide a logically

Browse Source 
consistent portmap example rule.
Reviewed by: obrien, markm
Obtained-good-ideas from: obrien
This commit is contained in:
cwt 2000-03-28 17:28:56 +00:00
parent eceeb23a94
commit c34ee5c602
1 changed files with 5 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
etc/hosts.allow
View File

@ -2,8 +2,8 @@
# hosts.allow access control file for "tcp wrapped" applications.
# $FreeBSD$
#
# NOTE: The hosts.deny file is no longer used.
# Instead, put both 'allow' and 'deny' rules in the hosts.allow file.
# NOTE: The hosts.deny file is deprecated.
# Place both 'allow' and 'deny' rules in the hosts.allow file.
# See hosts_options(5) for the format of this file.
# hosts_access(5) no longer fully applies.
@ -47,10 +47,9 @@ exim : ALL : allow
# Portmapper is used for all RPC services; protect your NFS!
# (IP addresses rather than hostnames *MUST* be used here)
portmap : localhost : allow
portmap : .nice.guy.example.com : allow
portmap : .evil.cracker.example.com : deny
portmap : ALL : allow
portmap : 192.0.2.32/255.255.255.224 : allow
portmap : 192.0.2.96/255.255.255.224 : allow
portmap : ALL : deny
# Provide a small amount of protection for ftpd
ftpd : localhost : allow