Date: Tue, 29 May 2001 15:40:28 -0500 From: "Tony Wells" <tony@camel.kdsi.net> To: "Lee Mark Mercado" <mercadolee@hotmail.com>, <freebsd-questions@FreeBSD.ORG> Subject: Re: blocking IPs Message-ID: <005a01c0e87f$9b85c620$bf73f0cd@dw35617> References: <F62Odutox7nyeKzGZuN0000f396@hotmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
I though I'd post this response back to the list... Tony Wells wrote: > > Someone mentioned off-list that /etc/hosts.allow might be easier for a > newbie to setup, which I agree it is. The problem is it only controls > access to services that are started by inetd. Doug Barton wrote: That is not true on FreeBSD. At minimum it also allows control of the sshd that comes with the system. A firewall is a better choice for overall security, but if all the ports you actually have open are available to be controlled by hosts.allow, IMO you're at least 80% there, and that is sufficient for most desktop users. Doug Apparently things have changed since the days of TCP wrappers. Ever since I started using IPFW, I guess I lost touch with my old friend hosts.allow. :-) ----- Original Message ----- From: "Lee Mark Mercado" <mercadolee@hotmail.com> To: <freebsd-questions@FreeBSD.ORG> Sent: Sunday, May 27, 2001 12:31 PM Subject: blocking IPs > how do i block certain IP's in accessing my freeBSD BOX ? which file should > i edit ? > _________________________________________________________________ > Get your FREE download of MSN Explorer at http://explorer.msn.com > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?005a01c0e87f$9b85c620$bf73f0cd>