Hosts.deny

Giorgos Keramidas keramida at ceid.upatras.gr
Tue Mar 14 10:41:06 EET 2000 

On Tue, Mar 14, 2000 at 09:43:35AM +0200, Nick Hamilakis wrote:

> Tha ithela na mplokarw thn prosvash se oles tis yphresies se ips pou
> arxizoun apo 200.10.10.* px.  Pera apo firewalls kai mono mesw linux
> prospathw alla kati den kanw swsta mallon.

Luseis uparxoun polles.

a) Bazeis to ipchains kai to support pou xreiazetai sto kernel sou, kai
   kobeis tis sundeseis apo 200.10.10.* stis uphresies pou theleis na
   prostatepseis.  Gia na kleiseis p.x. to sendmail (port 25):

	# ipchains -a input -s 200.10.10.0/24 -j deny

   analoga pragmata gia alla IP's kai alles ports sou.

b) Ftiaxneis sto /etc/hosts.allow h hosts.deny sou tis antistoixes
   grammes.  Nomizo pos se kapoia kainouria tcp_wrappers, to hosts.deny
   den exei shmasia, alla koitane mono to hosts.allow mipos auto eftaige
   kai den sou douleue mexri twra?  Gia paradeigma sto diko mou
   hosts.allow exei tin grammi:

	sendmail : ALL : allow

   (Nai, nai, jero, ok einai anoixto se olous.  Mou exei pei omws to
   mail-abuse.org oti den peirazei.)

c) Kaneis KAI ta duo pou eipa parapano (ki edo h erotisi einai, poso
   paranoikos mporeis na gineis?) kai pros8eteis kai sto configuration
   tou ka8e service sou, opws p.x. tou sendmail, kanones pou koboun
   epilektika tin prospelasi.  Panta mporeis na gineis pio paranoikos
   apo oso isoun xtes... (twra kapoioi psuxiatroi/psuxologoi 8a gelane
   kai tha monologoun 'nai, nai, sinithos to anapodo einai duskolo').

> Kai kati allo, yparxei tropos wste na mhn xrhsimopoihtai to sendmail
> mou gia fake email?

H suntomi apantisi einai: "nai".

Opote twra pou sou efuge ena agxos, as doume pos 8a to kaneis:

To sendmail-FAQ dinei kapoia basika hints.  To idio to site tou sendmail
(tha to breis opws perimene kaneis sto www.sendmail.org) exei stin proti
kiolas page tou link se eidiko keimeno pou perigrafei pos na apofugeis
to spamming an exeis 8.8.x i (kalutera) 8.9.x version.

H proteinomeni lusi einai sinithos upgrade se 8.9.x kai paixnidi me to
/etc/mail/access database.

> An kapoio apo ta themata exei hdh syzhth8ei zhtaw sygnwmh alla exw
> psaksei arketa prin rwthsw.

Isws, kaneis den to arneitai.  Sto `home page' tou sendmail omws den
phges akoma?  Periiiergo...

-- 
Giorgos Keramidas, < keramida @ ceid . upatras . gr >
For my public PGP key: finger keramida at diogenis.ceid.upatras.gr
My PGP fingerprint is in the headers of this message.
--
====================================================================
Gia boithia (h na diagrafhte) e-mail sto majordomo at hellug.gr
Ta archives tis listas einai sto http://lists.hellug.gr/lgu.html
prin steilete kapoia erothsh psakte mipos exei hdh apanththei.
Gia opoiodipote problima stilte e-mail ston owner-linux-greek-users at hellug.gr
====================================================================

More information about the Linux-greek-users mailing list