tcp-wrappers and security

To: tclug-list@listserv.real-time.com
Subject: tcp-wrappers and security
From: Ben Luey <lueyb@carleton.edu>
Date: Thu, 29 Apr 1999 13:22:04 -0500 (CDT)

Is there a security difference between uncommenting services in
/etc/inetd.conf, filtering them with ipchains, and dening them via
/etc/hosts.allow and /etc/hosts.deny? The reason I ask is that I want to
run some unsecurish services to a few trusted hosts, but not everywhere.
I've tried using ipchains to deny telnet service to all ip's but some, but
then I can't telnet outside to other servers, so I'm using
/etc/hosts.allow. 

Am I right that short of a firewall, I can't have ipchains block all
incoming telnet requests from certain sites without blocking outgoing
telnets from my computer to these sites?

Thanks,

Ben

Ben Luey
lueyb@carleton.edu
ICQ: 19144397

Political power grows out of the barrel of a gun."  -- Mao Tse-tung

Follow-Ups:
- Re: [TCLUG:5649] tcp-wrappers and security
  - From: Michael Hicks <hick0088@tc.umn.edu>

Prev by Date: bt848
Next by Date: Re: [TCLUG:5645] need more ptys
Prev by thread: bt848
Next by thread: Re: [TCLUG:5649] tcp-wrappers and security
Index(es):
- Date
- Thread