- To: "Tony Green" <tgreen@xxxxxxxxxxx>
- Subject: Re: [SLUG] cant telnet
- From: Christopher Booth <christopher.booth@xxxxxxxxxxxxx>
- Date: Wed Feb 20 10:15:02 2002
- Cc: henry@xxxxxxxxxxxxxx, slug@xxxxxxxxxxx
- Organization: Fuji Xerox Australia
Also check that hosts.deny doesn't exclude the ip address (I found that PortSentry gets fanatical about denying hosts)
man hosts.allow doesn't really explain the syntax properly (IMO)
I put
ALL: 192.168.0.3
though I suspect that you can put
ftp: 192.168.0.3 203.184.139.26
telnet: 192.168.0.3 203.184.139.26
sshd: 192.168.0.3 203.184.139.26
The Gurus will correct me if I am wrong but that should limit connections to those hosts only
Chris
On 19 Feb 2002 22:06:36 +1100
"Tony Green" <tgreen@xxxxxxxxxxx> wrote:
> On Tue, 2002-02-19 at 20:33, henry wrote:
> > Dear Sirs:
> >
> > Tks for your instruction.
> > I use slackware.
> >
> > I get msg "/etc/hosts.allow missing separator ":" at line 1 " by
> > typing "tail /var/log/syslog"
> > And there is only one line : 192.168.0.223 in hosts.allow
> >
> >
>
> Henry,
>
> Firstly, can you please ensure that you only reply to the list and not
> to me personally. This keeps the whole 'mailing list' idea alive and
> well.
>
> Second, I would check the syntax of hosts.allow (man hosts.allow). Its
> been a long time since I used it (ssh/xinetd took its place) but I know
> you're missing something
>
> I would also make the suggestion that telnet is an insecure tool for
> remote access and should be used with caution. Consider using ssh in
> its place.
>
> HTH
>
> Greeno
> --
> Tony Green <tgreen@xxxxxxxxxxx>
> GnuPG Key : 1024D/B5657C8B
> Key fingerprint = 9ED8 59CC C161 B857 462E 51E6 7DFB 465B B565 7C8B
> --
> SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
> More Info: http://lists.slug.org.au/listinfo/slug
SLUG Mailing List Archives