The default rule in this file actually sent mail to root as its default

action when denying access to a service. Unfortunately, this also makes a dandy denial-of-service attack possible. Change to just log the event and shoot a "go away" response back down the socket.
2000-02-17 04:52:23 +00:00 · 2000-02-17 04:52:23 +00:00 · b1be9320f3
commit b1be9320f3
parent 7b5629bcec
1 changed files with 2 additions and 3 deletions
--- a/etc/hosts.allow
+++ b/etc/hosts.allow
@ -65,8 +65,7 @@ fingerd : ALL \
 	 /usr/bin/mail -s "tcpd\: %u@%h[%a] fingered me!" root) & \
 	: deny

-# The rest of the daemons are protected. Backfinger and log by email.
+# The rest of the daemons are protected.
 ALL : ALL \
-	: severity auth.info : spawn (/usr/bin/finger -l @%h | \
-	 /usr/bin/mail -s "tcpd\: %u@%h[%a] tried to use %d  (denied)" root) & \
+	: severity auth.info \
 	: twist /bin/echo "You are not welcome to use %d from %h."