RE: It was bound to happen - suspected hack

21 Oct 2004


      I saw your modification in my research.  Thanks for confirming it.  I'll
add it to my hosts.allow file.
Thanks for the quick responses.
Jon
...
I'd modify the hosts.allow file a bit more...
i.e.
sshd: localhost 192.168.0.0/255.255.255.0 12.30.163.*
ALL:ALL:DENY
This is a "catch-all" that is a best practice just incase the hosts.deny
is misconfigured or not configured at all, although the ALL:ALL in your
hosts.deny is correct.  It will deny access to all services that tcpd
monitors to everything as a last resort.  Hence, if it's not explicitly
defined to be allowed, it is by default denied.
Just an idea...

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

RE: It was bound to happen - suspected hack