Networking - hosts.allow missing soulfly - Jul 07, 2008 - 11:38 PM Post subject: hosts.allow missing
I've read everything in the manual on ssh and its working great between my two computers. But for some reason hosts.allow and hosts.deny are missing in /etc. According to the manual I need to add the remote computers ip address here...... Where is it? and how is it working without it? I hate being a new "B".I tried reinstall open-ssh server and client also, no files. I have these files on the other mahine running mepis.
soulfly - Jul 08, 2008 - 01:01 AM Post subject: RE: hosts.allow missing
After some googeling, it looks like portmap is what creates this file. apparently ssh doesn't require portmap, because its working. The files are in mepis because I have FreeNX installed, which requires portmap. So, my question now is, if I just want to use ssh for remote access, do I need portmap? and what would be the advantage of having it installed? (if there is any). It sounded to me like portmap made things more vulnerable, and thats why you have to edit /etc/hosts.allow. http://www.vanemery.com/DAS/421-debian-30r2.html This is where I got my info, someone please inform me if I'm comprehending wrong.
Thanks in advance, Brian.
soulfly - Jul 12, 2008 - 09:25 PM Post subject: RE: hosts.allow missing
"tcpd" is actually the pacvkage that puts these files in /etc
smolloy - Jul 23, 2008 - 09:47 PM Post subject: RE: hosts.allow missing
I would like to use hosts.allow and hosts.deny to help with brute force attacks. From what you write, it seems that all I have to do is install tcpd -- is that correct?
soulfly - Jul 24, 2008 - 10:27 PM Post subject: RE: hosts.allow missing
All : All in hosts.deny will block everything. Then add the hosts in hosts.allow by ip address. I did this for ssh purposes on my LAN. As far as brute force attacks, it will help, but having your router or firewall configured properly will do more. If your wireless, and your ssid is broadcast for others to see, then someone could still retrieve your wep key or pass phrase with specific tools, alowing to use your internet connection. I hope this helps.
I'm actually in the proccess of trying to figure out how to use some of these tools to test and monitor my own network.