Networking Forums
Home Register Members Search Links
Member Login:

Networking Forums > Computer Networking > Linux Networking > what's wrong with this hosts.deny?

Reply
Thread Tools Display Modes

what's wrong with this hosts.deny?

 
 
scrunchy2k@yahoo.com
Guest
Posts: n/a

 
      07-12-2005, 12:57 PM

I'm trying to block certain hackers, but for some reason
the following hosts.deny isn't working. Can someone explain
why?

Thanks.

ALL EXCEPT sshd httpd: ALL

httpd: 80.17. 209. 210. 211. 212. 213. 214. 215.
216.
217. 218. 60.36. 195.70.

sshd: 80.17. 209. 210. 211. 212. 213. 214. 215.
216.
217. 218. 60.36. 195.70.
 
Reply With Quote
 
 
 
 
Bit Twister
Guest
Posts: n/a

 
      07-12-2005, 01:53 PM
On 12 Jul 2005 05:57:58 -0700, (E-Mail Removed) wrote:
>
> I'm trying to block certain hackers, but for some reason
> the following hosts.deny isn't working. Can someone explain
> why?
>
> Thanks.
>
> ALL EXCEPT sshd httpd: ALL
>
> httpd: 80.17. 209. 210. 211. 212. 213. 214. 215.
> 216.
> 217. 218. 60.36. 195.70.



Have you looked at the examples in
man 5 hosts_access
 
Reply With Quote
 
Wolfman's Brother
Guest
Posts: n/a

 
      07-12-2005, 04:21 PM
(E-Mail Removed) wrote:
> I'm trying to block certain hackers, but for some reason
> the following hosts.deny isn't working. Can someone explain
> why?
>
> Thanks.
>
> ALL EXCEPT sshd httpd: ALL
>
> httpd: 80.17. 209. 210. 211. 212. 213. 214. 215.
> 216.
> 217. 218. 60.36. 195.70.
>
> sshd: 80.17. 209. 210. 211. 212. 213. 214. 215.
> 216.
> 217. 218. 60.36. 195.70.
>
What's in your hosts.allow file?
Remember that hosts.allow rules override hosts.deny rules.

Chris
--
http://www.lowth.com/rope - Firewalling of Bittorrent, eDonkey and other
application protocols using Linux, IpTables

and "ROPE".
 
Reply With Quote
 
David Efflandt
Guest
Posts: n/a

 
      07-13-2005, 10:53 AM
On 12 Jul 2005, (E-Mail Removed) <(E-Mail Removed)> wrote:
>
> I'm trying to block certain hackers, but for some reason
> the following hosts.deny isn't working. Can someone explain
> why?
>
> Thanks.
>
> ALL EXCEPT sshd httpd: ALL
>
> httpd: 80.17. 209. 210. 211. 212. 213. 214. 215.
> 216.
> 217. 218. 60.36. 195.70.
>
> sshd: 80.17. 209. 210. 211. 212. 213. 214. 215.
> 216.
> 217. 218. 60.36. 195.70.

What web server are you using that it does tcpwrappers (for apache you
control that with allow or deny directives, or your firewall).

If sshd is running with ipv6 support it might not pay attention to ipv4
IPs. For example I had trouble allowing ssh from specific ipv4 ranges
that worked in the past, so I require keys only (passwords not allowed)
and just have a blanket ALL: UNKNOWN at end of hosts.deny (to at least
deny nameless/broken DNS IPs).
 
Reply With Quote
 
 
 
Reply

« Attempt to breakin | using a remote machine as a "relay"? tunnel with SSH? »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
which log files to check for hosts.deny Monty loree Linux Networking 4 11-28-2006 11:43 AM
hosts.deny problem scrunchy2k@yahoo.com Linux Networking 4 07-16-2005 08:23 PM
hosts.deny and hosts.allow problem dan Linux Networking 3 06-15-2005 07:26 PM
Allow read Deny Copy shajahan Windows Networking 2 05-07-2005 08:19 PM
Deny ssh but allow ftp Robert Linux Networking 8 09-21-2003 08:35 AM


Forum Software Powered by vBulletin®, Copyright Jelsoft Enterprises Ltd.
SEO by vBSEO 3.3.2 ©2009, Crawlability, Inc.
Contact Us - Archive - Privacy Statement - Top

1 2 3 4 5 6 7 8 9 10 11