On Tue, 16 Nov 2004 15:26:46 +0100, Mark Maas <[EMAIL PROTECTED]> wrote:
> I found a few site's about the very subject, and i'm starting to
> read about netfilter. (Iptables)
> Hard stuff, but one has got to learn what he is using right?
I found iptables confusing when I was trying to read it yea
There are several approaches:
1) Use tcpd - access control facility for internet services
Configure your /etc/hosts.allow and /etc/hosts.deny as follows:
Add to /etc/hosts.allow
# Services that can be contacted externally.
sshd: IP-host1/255.255.255.0 IP-host2/255.255.255.0
172.16.145.0/255.2
On Tue, Nov 16, 2004 at 06:12:34PM +0900, Nick Hastings wrote:
> Deny everything (except what you explicitly allow in hosts.allow)
> # hosts.deny
> ALL: ALL
>
> # hosts.allow
> ssh: xxx.xxx.xxx.xxx, yyy.yyy.yyy.yyy
>
> Alternatively to allow everyone on your local network (assuming the
> standard
--- Mark Maas <[EMAIL PROTECTED]> wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Hi All,
>
> I'm trying to restrict access to my ssh server from
> the outside to
> allow only two IP adresses and the internal lan
> ofcourse.
> And deny access to everyone else.
>
> People are tryin
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Mark Maas wrote:
| -BEGIN PGP SIGNED MESSAGE-
| Hash: SHA1
|
| Hi All,
|
| I'm trying to restrict access to my ssh server from the outside to
| allow only two IP adresses and the internal lan ofcourse.
| And deny access to everyone else.
|
| Peo
My mistake was...
> michael (<[EMAIL PROTECTED]>) wrote:
>>> Besides the allready mentioned iptables and hosts.allow/deny
>>> mechanisms you can also limit this somewhat in SSH itself:
>>>
>>> in /etc/ssh/sshd_config
>>> AllowUsers
>>
>> but which ssh are you using? it does not seem to be in
>> O
Hello
michael (<[EMAIL PROTECTED]>) wrote:
>> On Tue, 2004-11-16 at 08:50 +0100, Mark Maas wrote:
>>> I'm trying to restrict access to my ssh server from the outside to
>>> allow only two IP adresses and the internal lan ofcourse.
>>> And deny access to everyone else.
>>
>> Besides the allready me
On Tue, 2004-11-16 at 10:55 +, michael wrote:
> > On Tue, 2004-11-16 at 08:50 +0100, Mark Maas wrote:
> >> I'm trying to restrict access to my ssh server from the outside to
> >> allow only two IP adresses and the internal lan ofcourse.
> >> And deny access to everyone else.
> >
> > Besides the
> On Tue, 2004-11-16 at 08:50 +0100, Mark Maas wrote:
>> I'm trying to restrict access to my ssh server from the outside to
>> allow only two IP adresses and the internal lan ofcourse.
>> And deny access to everyone else.
>
> Besides the allready mentioned iptables and hosts.allow/deny mechanisms
>
On Tue, 2004-11-16 at 08:50 +0100, Mark Maas wrote:
> I'm trying to restrict access to my ssh server from the outside to
> allow only two IP adresses and the internal lan ofcourse.
> And deny access to everyone else.
Besides the allready mentioned iptables and hosts.allow/deny mechanisms
you can a
* Mark Maas <[EMAIL PROTECTED]> [041116 16:52]:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Hi All,
>
> I'm trying to restrict access to my ssh server from the outside to
> allow only two IP adresses and the internal lan ofcourse.
> And deny access to everyone else.
>
> People are tryi
Hello
[EMAIL PROTECTED] (<[EMAIL PROTECTED]>) wrote:
> Mark Maas <[EMAIL PROTECTED]> wrote on 16.11.2004 08:50:57:
>
>> I'm trying to restrict access to my ssh server from the outside to
>> allow only two IP adresses and the internal lan ofcourse.
>> And deny access to everyone else.
>>
>> Peopl
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Hi All,
>
> I'm trying to restrict access to my ssh server from the outside to
> allow only two IP adresses and the internal lan ofcourse.
> And deny access to everyone else.
>
> People are trying the guess a username and password tactic a
Mark Maas <[EMAIL PROTECTED]> wrote on 16.11.2004
08:50:57:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Hi All,
>
> I'm trying to restrict access to my ssh server from the outside to
> allow only two IP adresses and the internal lan ofcourse.
> And deny access to everyone else.
>
> P
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi All,
I'm trying to restrict access to my ssh server from the outside to
allow only two IP adresses and the internal lan ofcourse.
And deny access to everyone else.
People are trying the guess a username and password tactic a little
too much to my lik
15 matches
Mail list logo
