On Tue, Oct 27, 1998 at 09:52:28AM -0500, Linh Dang wrote: : I want to deny telnet, ftp and smtp connection from ANY other sites. But : I want to accept http connection, pull down pop3, imap and send out mail : (smtp). : : How do I setup /etc/host.deny, /etc/host.allow and CO. I will RTFM but : since security is so important (that why I choose Debian) I'd like to : hear all the tips, tricks and know all traps, pitfalls...
Though you could indeed use the tcpwrappers package (/usr/sbin/tcpd et al.) which uses those files. Another way, which I'd prefer, is using ipfwadm to build a packet filter which just blocks every packet not matching the criteria you mentioned above. bye, -Remco
