You are not logged in.
- Topics: Active | Unanswered
#1 2009-08-07 08:13:09
- tpolich
- Member
- Registered: 2009-08-07
- Posts: 44
don't understand why I can connect, not in hosts.allow
I installed the transmission-cli package today and was playing arround with it. After installing I ran its daemon as a non root user and was able to connect to the webserver it hosts from another computer without adding anything to hosts.allow.
Maybe I am just missunderstanding how hosts.allow and hosts.deny work?
My hosts.allow and hosts.deny
#
# /etc/hosts.allow
#
ALL: localhost
sshd: ALL
# End of file#
# /etc/hosts.deny
#
ALL: ALL: DENY
# End of fileOffline
#2 2009-08-07 09:18:39
- foutrelis
- Developer
- From: Athens, Greece
- Registered: 2008-07-28
- Posts: 705
- Website
Re: don't understand why I can connect, not in hosts.allow
The daemon must explicitly have support for tcp wrappers for hosts.{allow,deny} to be taken into consideration when accepting a new connection. Not all daemons do so.
Offline
#3 2009-08-07 11:08:34
- fukawi2
- Ex-Administratorino
- From: .vic.au
- Registered: 2007-09-28
- Posts: 6,224
- Website
Re: don't understand why I can connect, not in hosts.allow
As foutrelis said, support for hosts.(allow|deny) must be part of the application you're trying to restrict access to.
If you want to restrict access to an application that doesn't support tcp wrappers, then you'll need to use a firewall such as iptables.
Are you familiar with our Forum Rules, and How To Ask Questions The Smart Way?
BlueHackers // fscanary // resticctl
Offline