From owner-freebsd-questions@FreeBSD.ORG  Mon Sep 29 09:25:41 2003
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 6725316A4B3
	for <freebsd-questions@freebsd.org>;
	Mon, 29 Sep 2003 09:25:41 -0700 (PDT)
Received: from smtp.infracaninophile.co.uk (smtp.infracaninophile.co.uk
	[81.2.69.218])	by mx1.FreeBSD.org (Postfix) with ESMTP id EF7F943FE3
	for <freebsd-questions@freebsd.org>;
	Mon, 29 Sep 2003 09:25:39 -0700 (PDT)
	(envelope-from m.seaman@infracaninophile.co.uk)
Received: from happy-idiot-talk.infracaninophile.co.uk (localhost [127.0.0.1])
	h8TGP2fs027331
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO)
	for <freebsd-questions@freebsd.org>;
	Mon, 29 Sep 2003 17:25:32 +0100 (BST)
	(envelope-from matthew@happy-idiot-talk.infracaninophile.co.uk)
Received: (from matthew@localhost)id h8TGP2Q1027330
	for freebsd-questions@freebsd.org;
	Mon, 29 Sep 2003 17:25:02 +0100 (BST)	(envelope-from matthew)
Resent-From: m.seaman@infracaninophile.co.uk
Resent-Date: Mon, 29 Sep 2003 17:25:02 +0100
Resent-Message-ID: <20030929162502.GC26758@happy-idiot-talk.infracaninophile.co.uk>
Resent-To: freebsd-questions@freebsd.org
Date: Mon, 29 Sep 2003 17:21:31 +0100
From: Matthew Seaman <m.seaman@infracaninophile.co.uk>
To: Noah <admin2@enabled.com>
Message-ID: <20030929162131.GB26758@happy-idiot-talk.infracaninophile.co.uk>
References: <20030929160815.M65639@enabled.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
In-Reply-To: <20030929160815.M65639@enabled.com>
User-Agent: Mutt/1.5.4i
X-Spam-Status: No, hits=-4.9 required=5.0 tests=BAYES_00 autolearn=no 
	version=2.60
X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on 
	happy-idiot-talk.infracaninophile.co.uk
Subject: Re: portsentry - flushing hosts.deny
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 29 Sep 2003 16:25:41 -0000

On Mon, Sep 29, 2003 at 08:10:22AM -0800, Noah wrote:
>=20
> FreeBSD 4.8 - stable
>=20
>=20
> can somebody tell me how to get portsentry to flush the hosts.deny file? =
 or
> do I just need to remove the contents manually and restart portsentry?

You don't need to do that for two reasons:

i) tcp_wrappers re-reads it's configuration file automatically
whenever a new connection gets made to a wrapped service: any changes
will be picked up instantaneously.

ii) Under FreeBSD the default is to compile tcp_wrappers using the
optional host_options(5) style.  That means that only /etc/hosts.allow
is consulted, and each rule in that file contains an extra final field
(compared to the hosts_access(5) style) which says whether the rule is
an ALLOW or DENY rule.

	Cheers,

	Matthew

--=20
Dr Matthew J Seaman MA, D.Phil.                       26 The Paddocks
                                                      Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey         Marlow
Tel: +44 1628 476614                                  Bucks., SL7 1TH UK