From owner-freebsd-questions Wed Sep 6 1:14:19 2000 Delivered-To: freebsd-questions@freebsd.org Received: from siafu.iconnect.co.ke (upagraha.iconnect.co.ke [209.198.248.2]) by hub.freebsd.org (Postfix) with ESMTP id ED41B37B422 for ; Wed, 6 Sep 2000 01:14:13 -0700 (PDT) Received: from vedette by siafu.iconnect.co.ke with local (Exim 2.12 #1) id 13WaKP-000LTx-00 for freebsd-questions@FreeBSD.ORG; Wed, 6 Sep 2000 11:13:05 +0300 Date: Wed, 6 Sep 2000 11:13:05 +0300 From: Odhiambo Washington To: freebsd-questions@FreeBSD.ORG Subject: Re: .wizard Message-ID: <20000906111305.B73723@siafu.iconnect.co.ke> Mail-Followup-To: freebsd-questions@FreeBSD.ORG References: <001201c01786$a4843c40$0a0a0a0a@sysenglt112> <20000905190614.A3927@dan.emsphone.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95.3i In-Reply-To: <20000905190614.A3927@dan.emsphone.com>; from Dan Nelson on Tue, Sep 05, 2000 at 07:06:14PM -0500 X-Mailer: Mutt http://www.mutt.org/ X-Accept-Language: en fr X-Editor: Pico http://www.washington.edu/pine X-Location: Mombasa, Kenya, East Africa X-Uptime: 11:05AM up 8 days, 23:55, 12 users, load averages: 0.94, 0.50, 0.41 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Quoting Dan Nelson : [000906 03:00]: Dan Nelson>In the last episode (Sep 05), Raymond Hicks said: Dan Nelson>> Cheers, Dan Nelson>> can anyone tell me what this entry when I do netstat does.. what are Dan Nelson>> these entries? Dan Nelson>> .wizard or Dan Nelson>> .2003 Dan Nelson>> .callbook Dan Nelson>> .globe Dan Nelson> Dan Nelson>I'm betting that is not the only thing on the line when you run Dan Nelson>netstat, right? You forgot to list what's in the "Remote address" Dan Nelson>column? Those are most likely just the local end of a telnet or ftp Dan Nelson>session you are making to a remote host. Dan Nelson> Dan Nelson>> 2) Dan Nelson>> how do I block my box from allowing access from certain IP addresses? Dan Nelson>> should I add a hosts.deny file in /etc? Does FreeBSD recognize this Dan Nelson>> convention? I am running 3.4 on intel 233... this is pertaining to Dan Nelson>> Portsentry... it by default wants to add to hosts.deny and there is not a Dan Nelson>> hosts.deny file there so I created one and it still allows you to connect Dan Nelson>> from blocked addresses..?? From 3.4 there is only hosts.allow and that is where all the rules are supposed to be. Look at the format closely, it details how to do what you wanna do..it is like this, daemon_name : friendly_hosts_or_ips : allow daemon_name : ALL : deny If the daemon is the telnetd, then it would be like this, telnetd : w.x.y.x 1.2.3.4 : allow telnetd : ALL : deny Also man hosts_options -wash -- Odhiambo Washington Systems Administrator Inter-Connect Ltd. 3rd Flr The Chancery Valley Rd PO Box 39519 Nairobi, KENYA Tel: 254 2 711140 Fax: 254 2 718418 I waited and waited, and when no message came, I knew it must have been from you. -Ashleigh Brilliant (contributed by Chris Johnston) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message