Date: Mon, 28 May 2001 01:26:03 -0700 From: "Robert L Sowders" <rsowders@usgs.gov> To: david@banning.com Cc: owner-freebsd-questions@FreeBSD.ORG, questions@freebsd.org Subject: Re: telnet security question Message-ID: <OF3436683E.192AC2E6-ON88256A5A.00254C83@wr.usgs.gov>
next in thread | raw e-mail | index | archive | help
David, While the following method is not the best, it will do in a pinch. You could allow telnet in the inetd.conf and edit the hosts.allow file to only accept the ip's that you desire, and reject all others. Make sure you use the paranoid option. (does a reverse DNS lookup of connecting IPs) BTW tcp_wrappers is part of the base system also, no need to install. Just edit the first section of the hosts.allow files to comment out All:Allow and you are using tcp_wrappers. See man hosts.allow and man 5 hosts_access. Some pretty cool stuff in there. David Banning <sky_tracker@yahoo.com> Sent by: owner-freebsd-questions@FreeBSD.ORG 05/27/2001 01:09 AM Please respond to david To: questions@freebsd.org cc: Subject: telnet security question Is there a way to allow users on our local area network to telnet into the server, but block telnet access to the server from the internet? _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?OF3436683E.192AC2E6-ON88256A5A.00254C83>