From owner-freebsd-isp@FreeBSD.ORG Wed Apr 20 21:08:07 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A358616A4CE for ; Wed, 20 Apr 2005 21:08:07 +0000 (GMT) Received: from materva.diewebmaster.at (materva.diewebmaster.at [80.66.42.216]) by mx1.FreeBSD.org (Postfix) with ESMTP id D98B543D1D for ; Wed, 20 Apr 2005 21:08:04 +0000 (GMT) (envelope-from christian.damm@diewebmaster.at) Received: from localhost (localhost.diewebmaster.at [127.0.0.1]) by materva.diewebmaster.at (Postfix) with ESMTP id 084B02180E1; Wed, 20 Apr 2005 23:08:01 +0200 (CEST) Received: from materva.diewebmaster.at ([127.0.0.1]) by localhost (materva.diewebmaster.at [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 98063-03; Wed, 20 Apr 2005 23:08:00 +0200 (CEST) Received: from [192.168.1.11] (unknown [80.66.40.101]) by materva.diewebmaster.at (Postfix) with ESMTP id 2BFEB2180E0; Wed, 20 Apr 2005 23:07:59 +0200 (CEST) Message-ID: <4266C4BA.1010205@diewebmaster.at> Date: Wed, 20 Apr 2005 23:08:10 +0200 From: Christian Damm Organization: Die Webmaster User-Agent: Mozilla Thunderbird 0.9 (Windows/20041103) X-Accept-Language: de-DE, de, en-us, en MIME-Version: 1.0 To: Odhiambo Washington References: <20050420145207.GC60384@ns2.wananchi.com> In-Reply-To: <20050420145207.GC60384@ns2.wananchi.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-Virus-Scanned: by amavisd-new at diewebmaster.at cc: freebsd-isp@freebsd.org Subject: Re: courier-imap X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 20 Apr 2005 21:08:07 -0000 Odhiambo Washington schrieb: > Hello Sysadmins, > > Does anyone have any clues as to how I can easily limit access to my > imapd daemon to just a few hosts? > I am running courier-imap but looking at /etc/inetd.conf, I don't > see how I could put it in there and hence use hosts.allow to control > access. Google has not helped much, but again I may be searching using > wrong keyword. 1.) you can use the courier-suites own tcp server (quite similar to the DJB tcp server), 'couriertcpd' - look into the manpage, it is able to do ip restrictions and much more. 2.) dont know if it is possible to compile courier imap aginst libwrap and use the tcp wrapper (hosts.allow). 3.) i would not start courier imap via inetd/xinetd - courier imap was developed to be a stanalone imap daemon running within the courier-suite/framework...sure, you could use tcp wrapper without probs when using inetd/xinetd but there are better solutions than using one of the "super servers" *urghh*. 4.) use the packet filter on your border router/gateway/firewall or firewall the host directly via ipfw/ipf/pf to restrict access. > > > -Wash > > http://www.netmeister.org/news/learn2quote.html > > -- > +======================================================================+ > |\ _,,,---,,_ | Odhiambo Washington > Zzz /,`.-'`' -. ;-;;,_ | Wananchi Online Ltd. www.wananchi.com > |,4- ) )-,_. ,\ ( `'-'| Tel: +254 20 313985-9 +254 20 313922 > '---''(_/--' `-'\_) | GSM: +254 722 743223 +254 733 744121 > +======================================================================+ > Pohl's law: > Nothing is so good that somebody, somewhere, will not hate it. > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > !DSPAM:42666ca8698371595919483! > -- mfg. christian damm technische leitung phone: dw 42 email: christian.damm@diewebmaster.at icq at work: 124464652 die webmaster - flötzerweg 156 - 4030 linz - austria phone: +43-732-381242 fax: +43-732-381242-22 isdn (leonardo): +43-732-381242-33 homepage: www.diewebmaster.at, public email: office@diewebmaster.at