[LUAU] hosts.allow/deny

Dave Eason deason at hawaii.edu
Mon Feb 1 12:29:16 PST 1999 

I understand the hosts.deny, hehe BUT in the allow I'm not sure what these
lines do exactly:
>ALL: 10.10. 172.16.1.1 172.16.1.2 192.168.200.200 192.168.200.201
The Above, could you explain what the 10.10 is, as well as each different ip.

>in.ftpd: ALL
I'm assuming this allows everyone access to the ftp server
>in.telnetd: 172.16.1.1 172.16.1.2 192.168.200.200
I'm assuming this allows only certain IPs, but not sure how to go about
this.  In my case I have a small number of users which I want to have telnet
access (ssh2 is installed), and those users come from either the hawaii.edu
shells, my workstation and 2 dialups from ISPs.  I guess I'd need to specify
a range for the dialups, but the workstation and shells are static ips...
Any help would be appreciated.  Oh yeah, I forgot to mention, I disabled
normal telnet, forcing my  users to use an ssh client.

>sshd: ALL
Would I have to specify the ip's allowed to telnet in via ssh here instead
of telnetd?

----------------------
>syslogd: ALL
>in.talkd: localhost
>in.ntalkd: localhost
>in.dtalkd: localhost
>syslog: 172.16.
----------------------
I have no idea what the above 5 lines do, but I'd be interested in an
explanation if you have time.


Thanks again.



David C. Eason, Jr.


At 08:59 AM 2/1/99 -1000, you wrote:
>If you need help understanding any of these, post back:
>
>----hosts.allow----
>#
># hosts.allow   This file describes the names of the hosts which are
>#               allowed to use the local INET services, as decided
>#               by the '/usr/sbin/tcpd' server.
>#
>
># Allow all services to this group of users
>ALL: 10.10. 172.16.1.1 172.16.1.2 192.168.200.200 192.168.200.201
>in.ftpd: ALL
>in.telnetd: 172.16.1.1 172.16.1.2 192.168.200.200
>sshd: ALL
>syslogd: ALL
>in.talkd: localhost
>in.ntalkd: localhost
>in.dtalkd: localhost
>syslog: 172.16.
>
>----hosts.deny----
>#
># hosts.deny    This file describes the names of the hosts which are
>#               *not* allowed to use the local INET services, as decided
>#               by the '/usr/sbin/tcpd' server.
>#
># The portmap line is redundant, but it is left to remind you that
># the new secure portmap uses hosts.deny and hosts.allow.  In particular
># you should know that NFS uses portmap!
>
>ALL: ALL
>
>

More information about the LUAU mailing list