Date: Mon, 28 May 2001 01:26:03 -0700 From: "Robert L Sowders" <rsowders@usgs.gov> To: david@banning.com Cc: owner-freebsd-questions@FreeBSD.ORG, questions@freebsd.org Subject: Re: telnet security question Message-ID: <OF3436683E.192AC2E6-ON88256A5A.00254C83@wr.usgs.gov>
next in thread | raw e-mail | index | archive | help
David,
While the following method is not the best, it will do in a pinch. You
could allow telnet in the inetd.conf and edit the hosts.allow file to only
accept the ip's that you desire, and reject all others. Make sure you use
the paranoid option. (does a reverse DNS lookup of connecting IPs)
BTW tcp_wrappers is part of the base system also, no need to install. Just
edit the first section of the hosts.allow files to comment out All:Allow
and you are using tcp_wrappers. See man hosts.allow and man 5
hosts_access. Some pretty cool stuff in there.
David Banning <sky_tracker@yahoo.com>
Sent by: owner-freebsd-questions@FreeBSD.ORG
05/27/2001 01:09 AM
Please respond to david
To: questions@freebsd.org
cc:
Subject: telnet security question
Is there a way to allow users on our local area network to telnet
into the server, but block telnet access to the server from the internet?
_________________________________________________________
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?OF3436683E.192AC2E6-ON88256A5A.00254C83>