TCPWrapper is a program which when integrated with your host OS mechanism for accepting connections from remote users, allows administrators to uniformly enforce greater logging and access control than many network services are able to support. TCPwrapper can tell you who is connecting when, from where, and to which services, while allowing you to selectively accept or deny connections at an early opportunity. It can also trigger external commands when a particular connection criteria is met. This gives the TCPwrappers a lot of potential.
The general purpose of tcpwrapper is to monitor and filter incoming requests for SYSTAT,FINGER,FTP,TELNET,RLOGIN,RSH,
EXEC,TFTP,TALK and other network services
Limited to TCP packets.
not applicable to UDP or ICMP
/etc/hosts.allow and /etc/hosts.deny
/etc/hosts.allow read first
limits on a service
use daemons in /usr/sbin
can specify by domain or IP
No comments:
Post a Comment