From owner-freebsd-security Mon Apr 16 23:59: 5 2001 Delivered-To: freebsd-security@freebsd.org Received: from ringworld.nanolink.com (ringworld.nanolink.com [195.24.48.13]) by hub.freebsd.org (Postfix) with SMTP id 4719A37B43E for ; Mon, 16 Apr 2001 23:59:02 -0700 (PDT) (envelope-from roam@orbitel.bg) Received: (qmail 4244 invoked by uid 1000); 17 Apr 2001 06:57:27 -0000 Date: Tue, 17 Apr 2001 09:57:27 +0300 From: Peter Pentchev To: Khalil Haddad Cc: Fernando Schapachnik , security@FreeBSD.ORG Subject: Re: FTP - block outer connections Message-ID: <20010417095727.A4070@ringworld.oblivion.bg> Mail-Followup-To: Khalil Haddad , Fernando Schapachnik , security@FreeBSD.ORG References: <200104161651.NAA26855@ns1.via-net-works.net.ar> <001c01c0c69e$d44889f0$0200a8c0@khalil> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <001c01c0c69e$d44889f0$0200a8c0@khalil>; from khaddad@wanadoo.fr on Mon, Apr 16, 2001 at 07:58:23PM +0200 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, Apr 16, 2001 at 07:58:23PM +0200, Khalil Haddad wrote: > thx for your answer > i changed my hosts.allow and made a rule to deny all and to allow only the > ip of the machine i want to ftp in > > but how do you make the changes to take effect ? i did not find this in the > man pages (other than reboot) The hosts.allow and hosts.deny files are examined upon every invocation of the TCP wrapper; that is, upon every incoming FTP connection. You do not need to do anything more after changing the hosts.* files. G'luck, Peter -- If wishes were fishes, the antecedent of this conditional would be true. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message