Gentoo Logo
Gentoo Spaceship




Note: Due to technical difficulties, the Archives are currently not up to date. GMANE provides an alternative service for most mailing lists.
c.f. bug 424647
List Archive: gentoo-security
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Headers:
To: gentoo-security@g.o
From: brant williams <brant@...>
Subject: Re: TCP Wrapper Documentation
Date: Mon, 12 Jan 2009 11:50:14 -0600 (CST)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256


Hi there...

You can also install the "DenyHosts" package, which will parse your syslog 
for failed ssh entries, and then update/maintain /etc/hosts.{allow,deny}.

http://denyhosts.sourceforge.net/

You can run it as a daemon, or from within cron.

hth
- -brant

brant williams
FCAA CDCA 20BC 3925 D634  F5C4 7420 6784 4DEB 6002



On Sat, 10 Jan 2009, Chris O'Regan wrote:

> Date: Sat, 10 Jan 2009 00:51:47 -0500
> From: Chris O'Regan <chris.oregan@...>
> Reply-To: gentoo-security@g.o
> To: gentoo-security@g.o
> Subject: Re: [gentoo-security] TCP Wrapper Documentation
> 
> Search for "tcp wrappers howto" on Google. Yes, this must be
> maintained manually. I recommend to do away with /etc/host.deny and
> have "ALL :ALL@ALL :deny" as the last line of /etc/hosts.allow.
>
> On Fri, Jan 9, 2009 at 11:51 PM, James Stull <rivitir@...> wrote:
>> I have a gentoo desktop profile system and I would like to use tcp wrappers
>> to secure certain services like ssh. I followed the documentation I could
>> find from the security guide to install the ebuild but I don't have the
>> /etc/hosts.allow or hosts.deny. Do I have to manually create these? Is their
>> any other documentation available that I can use to help me install and
>> configure it properly?
>>
>> Thanks for your help.
>>
>
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)

iEYEAREIAAYFAklrgtkACgkQdCBnhE3rYAIsLQCgpLxynaOGVdxWlKh7YeOdpIC5
oggAnRFgIwBudFTonqx2/ABUSdzDWNLx
=N70i
-----END PGP SIGNATURE-----


Replies:
Re: TCP Wrapper Documentation
-- James Stull
References:
TCP Wrapper Documentation
-- James Stull
Re: TCP Wrapper Documentation
-- Chris O'Regan
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Previous by thread:
Re: TCP Wrapper Documentation
Next by thread:
Re: TCP Wrapper Documentation
Previous by date:
Re: TCP Wrapper Documentation
Next by date:
Re: TCP Wrapper Documentation


Updated Jun 17, 2009

Summary: Archive of the gentoo-security mailing list.

Donate to support our development efforts.

Copyright 2001-2013 Gentoo Foundation, Inc. Questions, Comments? Contact us.