Date: Mon, 28 May 2001 10:27:30 +0800 From: "Lim Seng Chor" <Lim.Seng.Chor@sit.edu.my> To: David Banning <david@banning.com> Cc: david@banning.com, questions@FreeBSD.ORG Subject: Re: telnet security question Message-ID: <3B12255B.8582.CD05F18@localhost> In-Reply-To: <20010527170228.B4092@yahoo.com> References: <3B11271E.13364.8EF1A94@localhost>; from Lim.Seng.Chor@sit.edu.my on Sun, May 27, 2001 at 04:22:39PM %2B0800
next in thread | previous in thread | raw e-mail | index | archive | help
well, I did mention firewalls, but i didnt use the word 'firewalls'. (1) a router is a poor man firewalls, I think i did mention the packet filtering function. (2) and (3) is considered host-based firewalls function-alike program (4) and (5) is not firewalls but a cheap solution compare to firewalls You can have your network based or host based firewalls. but it depends on your need, because that involves the budget and policy of your company. : ) On 27 May 2001, at 17:02, David Banning wrote: > I notice you didn't mention a firewall. What would be your reasons for > the points you suggested versus a firewall, which was someone else's > suggestion? > > On Sun, May 27, 2001 at 04:22:39PM +0800, Lim Seng Chor wrote: > > > > (1) Block the telnet packet to your destination host at your > > router/gateway > > (2) use tcp_wrapper + inetd, allow only access to telnetd from local > > network (3) using xinetd and block all non local subnet telnet > > request (4) use /etc/login.access to block the non local login (5) > > define your login class at /etc/login.conf > > > > you can use either one of the above according to your need. > > if you have any questions or need any info/instruction how to do, > > just ask. good luck! : ) > > > > > > On 27 May 2001, at 8:09, David Banning wrote: > > > > > Is there a way to allow users on our local area network to telnet > > > into the server, but block telnet access to the server from the > > > internet? > > > > > > _________________________________________________________ > > > Do You Yahoo!? > > > Get your free @yahoo.com address at http://mail.yahoo.com > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > with "unsubscribe freebsd-questions" in the body of the message > > > > > > > > -- > You have a tendency to feel you are superior to most computers. > > _________________________________________________________ > Do You Yahoo!? > Get your free @yahoo.com address at http://mail.yahoo.com > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3B12255B.8582.CD05F18>