Add IP addresses to the rules required to "Allow anything from
localhost", since portmap(8) is included in "anything". Submitted by: Doug Barton <Doug@gorean.org>
This commit is contained in:
sheldonh
parent
66414fdb0b
commit
d23c57bbfd
@ -29,9 +29,10 @@ ALL : ALL : allow
|
||||
# Prevent those with no reverse DNS from connecting.
|
||||
ALL : PARANOID : RFC931 20 : deny
|
||||
|
||||
# Allow anything from localhost
|
||||
ALL : localhost : allow
|
||||
ALL : my.machine.example.com : allow
|
||||
# Allow anything from localhost. Note that an IP address (not a host
|
||||
# name) *MUST* be specified for portmap(8).
|
||||
ALL : localhost 127.0.0.1 : allow
|
||||
ALL : my.machine.example.com 192.0.2.35 : allow
|
||||
|
||||
# Sendmail can help protect you against spammers and relay-rapers
|
||||
sendmail : localhost : allow
|
||||
|
||||
Loading…
x
Reference in New Issue
Block a user