l i n u x - u s e r s - g r o u p - o f - d a v i s
Next Meeting:
July 7: Social gathering
Next Installfest:
Latest News:
Jun. 14: June LUGOD meeting cancelled
Page last updated:
2006 Jan 14 17:21

The following is an archive of a post made to our 'vox-tech mailing list' by one of its subscribers.

Report this post as spam:

(Enter your email address)
[vox-tech] TCP wrappers
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[vox-tech] TCP wrappers

Hey all,

I'm thinking of bolstering system security via TCP
wrappers - that is, configuring the hosts.allow and
hosts.deny file to control who can access my system.
(It has a static, public IP.)

Here's my question. If I set hosts.deny to "ALL"
(meaning deny all services to all users) then set
hosts.allow to (ALLOW FROM 198.34.xxx.xxx) meaning
allow users from 198.34.xxx.xxx to connect, how will
that affect those who try to access the server's

It's my understanding from books I've read that the
server looks at hosts.allow, THEN hosts.deny, meaning
that allow takes precedence over deny. However, the
texts don't say how httpd.conf factors in. There is a
setting in httpd.conf that controls "who can get stuff
from this server" as the comments say.

So my question is this. Do the settings in
hosts.allow/deny override the settings in httpd.conf?

Thanks, Matt

Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
vox-tech mailing list

LUGOD Group on LinkedIn
Sign up for LUGOD event announcements
Your email address:
LUGOD Group on Facebook
'Like' LUGOD on Facebook:

Hosting provided by:
Sunset Systems
Sunset Systems offers preconfigured Linux systems, remote system administration and custom software development.

LUGOD: Linux Users' Group of Davis
PO Box 2082, Davis, CA 95617
Contact Us

LUGOD is a 501(c)7 non-profit organization
based in Davis, California
and serving the Sacramento area.
"Linux" is a trademark of Linus Torvalds.

Sponsored in part by:
Appahost Applications
For a significant contribution towards our projector, and a generous donation to allow us to continue meeting at the Davis Library.