From owner-freebsd-security Mon Apr 3 17:18:21 2000 Delivered-To: freebsd-security@freebsd.org Received: from axl.ops.uunet.co.za (axl.ops.uunet.co.za [196.31.1.175]) by hub.freebsd.org (Postfix) with ESMTP id 2F6D537B512 for ; Mon, 3 Apr 2000 17:18:15 -0700 (PDT) (envelope-from sheldonh@axl.ops.uunet.co.za) Received: from sheldonh (helo=axl.ops.uunet.co.za) by axl.ops.uunet.co.za with local-esmtp (Exim 3.13 #1) id 12cH2l-000LHt-00; Tue, 04 Apr 2000 02:18:07 +0200 From: Sheldon Hearn To: "Cindy Snopko" Cc: security@FreeBSD.ORG Subject: Re: TCP Wrapper In-reply-to: Your message of "Mon, 03 Apr 2000 17:04:36 PDT." <20000404000436.99472.qmail@hotmail.com> Date: Tue, 04 Apr 2000 02:18:07 +0200 Message-ID: <81832.954807487@axl.ops.uunet.co.za> Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, 03 Apr 2000 17:04:36 PDT, "Cindy Snopko" wrote: > I have a TCP Wrapper question, and I hope you can answer it... Since it's really just a simple configuration question, it would have been more appropriate on the freebsd-questions mailing list. just something to keep in mind for next time. > I want to use a TCP wrapper to prevent a site (i.e., host.aaa.bbb.edu) from > using the finger service on my machine, but all other hosts can > use it, while only people logged into host.aaa.bbb.edu can telnet > into my machine. The hosts_access(5) manual page would explain everything you need to make sense of the following rules: fingerd: host.aaa.bbb.edu: deny fingerd: ALL allow telnetd: host.aaa.bbb.edu: allow telnetd: ALL: deny Ciao, Sheldon. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message