Solved

tcp_wrapper, Can I specify port number for /etc/hosts.allow

Posted on 2008-10-07
6
1,147 Views
Last Modified: 2013-12-27
I use TCP Wrapper to allow service install on solaris. Syntax for /etc/hosts.allow is daemon and ip to allow but my problem is I don't know what is daemon name. An application is not well know. Can I specify port number in /etc/hosts.allow?
0
Comment
Question by:anuratra
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 40

Assisted Solution

by:omarfarid
omarfarid earned 100 total points
ID: 22657435
please see link below for syntax:

http://www.squarebox.co.uk/cgi-squarebox/manServer/usr/share/man/man5/hosts.allow.5

I could not see any example showing that you can specify the port, but you can control the connecting IP source
0
 
LVL 40

Expert Comment

by:omarfarid
ID: 22657436
please see link below for syntax:

http://www.squarebox.co.uk/cgi-squarebox/manServer/usr/share/man/man5/hosts.allow.5

I could not see any example showing that you can specify the port, but you can control the connecting IP source
0
 

Author Comment

by:anuratra
ID: 22659293
My problem is I don't know daemon name. It is apache. I enter httpd , /PATH/httpd. They don'twork. Moreover another applications is not well known.
0
Threat Trends for MSPs to Watch

See the findings.
Despite its humble beginnings, phishing has come a long way since those first crudely constructed emails. Today, phishing sites can appear and disappear in the length of a coffee break, and it takes more than a little know-how to keep your clients secure.

 
LVL 40

Expert Comment

by:omarfarid
ID: 22660081
I think you can use ALL or unknown in the application field (if I remember correctly, you may check the link).
0
 

Author Comment

by:anuratra
ID: 22667201
If  I use "ALL" the other application won't block. I want to allow some applications.
0
 
LVL 22

Accepted Solution

by:
blu earned 400 total points
ID: 22668307
One key issue here is that not all daemons are compiled to use the TCP_Wrapper feature. The inetd daemon is, and thus can provide the service for all daemons that it starts (at least in nowait mode). You need to make sure that the daemons you want to control here are in fact tcp_wrapper capable.

Depending on you version of Solaris, you might want to use IPFilter instead.
0

Featured Post

Why Off-Site Backups Are The Only Way To Go

You are probably backing up your data—but how and where? Ransomware is on the rise and there are variants that specifically target backups. Read on to discover why off-site is the way to go.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco Nexus 5 61
internal SLA's for IT provision 6 39
Carbon Black hardware/system requirements 3 54
Restore DC not visible on network 13 32
If your business is like most, chances are you still need to maintain a fax infrastructure for your staff. It’s hard to believe that a communication technology that was thriving in the mid-80s could still be an essential part of your team’s modern I…
Data center, now-a-days, is referred as the home of all the advanced technologies. In-fact, most of the businesses are now establishing their entire organizational structure around the IT capabilities.
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
Suggested Courses

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question