Date: Mon, 27 Mar 1995 19:26:57 +0200 (MET DST) From: guido@gvr.win.tue.nl (Guido van Rooij) To: jkh@violet.berkeley.edu (Jordan K. Hubbard) Cc: security@FreeBSD.org, csteiner@vaultbbs.com Subject: Re: your mail Message-ID: <199503271726.TAA04589@gvr.win.tue.nl> In-Reply-To: <199503270551.VAA06922@violet.berkeley.edu> from "Jordan K. Hubbard" at Mar 26, 95 09:51:52 pm
next in thread | previous in thread | raw e-mail | index | archive | help
Jordan K. Hubbard wrote: > > I assume I am not the only one who has heard about a program called "Satan" > which is going to be released in early April. Apparently it's a program to > help system administrators find holes in their system security--the only > catch being that anyone in the world will be able to run it against any system Wietse Venema, codevelopper of Satan hapesn to be my neighbour. Of course, Satan has been well tested on FreeBSd systems (like all his tools). > on the net. So obviously it'll be a great tool for hackers... > > Does anyone know how FreeBSD 2.0 will stack up against this program? Are we > going to have a bunch of holes discovered by teenagers just looking to make > life difficult for us? > > Also, in Linux and System-V systems there are files called hosts.deny and > hosts.allow that allow you to allow/deny access to specific hosts on the net > to particular services (or all services). Are there any equivalents in BSD? > I've read over the TCP/IP Admin. manual as well as scanned the man pages and I > can't find anything. I have a number of sites that I'd like to block access > from before the Satan program is released. This has *nothing* to do with Linux or SysV. This is a feature introduced by the tcpwrapper (also written by Wietse). Just install it, it has a makefile for freebsd as well (or fetch it from the packages tree). -Guido
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199503271726.TAA04589>