Solved

tcp_wrapper, Can I specify port number for /etc/hosts.allow

Posted on 2008-10-07
6
1,146 Views
Last Modified: 2013-12-27
I use TCP Wrapper to allow service install on solaris. Syntax for /etc/hosts.allow is daemon and ip to allow but my problem is I don't know what is daemon name. An application is not well know. Can I specify port number in /etc/hosts.allow?
0
Comment
Question by:anuratra
  • 3
  • 2
6 Comments
 
LVL 40

Assisted Solution

by:omarfarid
omarfarid earned 100 total points
ID: 22657435
please see link below for syntax:

http://www.squarebox.co.uk/cgi-squarebox/manServer/usr/share/man/man5/hosts.allow.5

I could not see any example showing that you can specify the port, but you can control the connecting IP source
0
 
LVL 40

Expert Comment

by:omarfarid
ID: 22657436
please see link below for syntax:

http://www.squarebox.co.uk/cgi-squarebox/manServer/usr/share/man/man5/hosts.allow.5

I could not see any example showing that you can specify the port, but you can control the connecting IP source
0
 

Author Comment

by:anuratra
ID: 22659293
My problem is I don't know daemon name. It is apache. I enter httpd , /PATH/httpd. They don'twork. Moreover another applications is not well known.
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 40

Expert Comment

by:omarfarid
ID: 22660081
I think you can use ALL or unknown in the application field (if I remember correctly, you may check the link).
0
 

Author Comment

by:anuratra
ID: 22667201
If  I use "ALL" the other application won't block. I want to allow some applications.
0
 
LVL 22

Accepted Solution

by:
blu earned 400 total points
ID: 22668307
One key issue here is that not all daemons are compiled to use the TCP_Wrapper feature. The inetd daemon is, and thus can provide the service for all daemons that it starts (at least in nowait mode). You need to make sure that the daemons you want to control here are in fact tcp_wrapper capable.

Depending on you version of Solaris, you might want to use IPFilter instead.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question