Commit Graph

10 Commits

Author SHA1 Message Date
sheldonh
d23c57bbfd Add IP addresses to the rules required to "Allow anything from
localhost", since portmap(8) is included in "anything".

Submitted by:	Doug Barton <Doug@gorean.org>
2000-05-05 08:31:59 +00:00
cwt
25904dc02e Clarify the disposition of hosts.deny and provide a logically
consistent portmap example rule.
Reviewed by: obrien, markm
Obtained-good-ideas from: obrien
2000-03-28 17:28:56 +00:00
jkh
9c75578bb8 The default rule in this file actually sent mail to root as its default
action when denying access to a service.  Unfortunately, this also makes
a dandy denial-of-service attack possible.  Change to just log the event
and shoot a "go away" response back down the socket.
2000-02-17 04:52:23 +00:00
obrien
fffe75d935 Fix English. Also use full spelling and reorg a little while I'm here.
Submitted by:	Andy Farkas <andyf@speednet.com.au>
2000-01-25 11:25:59 +00:00
obrien
bc55786850 MFS: note that only IP addresses work when wrapping the portmapper.
Make clearer we consider this only an example, and admins should really
write this file for their needs.
1999-11-25 03:00:44 +00:00
peter
289c0d262f $Id$ -> $FreeBSD$ 1999-08-27 23:37:10 +00:00
sheldonh
28565e43c2 Add a sample entry for Exim, in preparation for the upcoming behaviour
change in the port, where TCP Wrapper support will become the default.

Requested by:	markm
1999-08-03 14:52:46 +00:00
obrien
2ec87bd360 Use /usr/bin/finger rather than `safe_finger'. 1999-05-08 02:19:25 +00:00
markm
dbf9f08c56 Use more politically correct examples, and expand the examples a bit. 1999-04-08 19:08:53 +00:00
markm
6cbcd29274 Add an example hosts.allow for the (base system) tcp_wrappers.
Anyone with good ideas for this is welcome to contribute.
1999-03-28 10:47:26 +00:00