Re: blocking ip's with proftpd

From: Kutulu (kutulu@kutulu.org)
Date: 10/12/01


Message-ID: <000d01c1530c$206b9940$88682518@longhill1.md.home.com>
From: "Kutulu" <kutulu@kutulu.org>
To: "Kaos" <kaos@houseofsloth.net>, <focus-linux@securityfocus.com>
Subject: Re: blocking ip's with proftpd 
Date: Fri, 12 Oct 2001 06:53:24 -0400

From: "Kaos" <kaos@houseofsloth.net>
Sent: Friday, October 12, 2001 12:25 AM

> Can anyone shed some light on how I can deny ip's with proftpd?
>
> I cant find anything on the web......

http://www.proftpd.org/docs/configuration.html#Allow
http://www.proftpd.org/docs/configuration.html#Deny
http://www.proftpd.org/docs/configuration.html#Limit

Also, if you are runnnig protftpd from your inetd superserver, you can use
the tcpwrappers support within tcpd. Find the line containing your ftp
entry (should begin "ftp stream tcp...", and replace the call to
/usr/sbin/proftpd with /usr/sbin/tcpd, like:

ftp stream tcp nowait root /usr/sbin/tcpd proftpd

There should be other similar entries that call tcpd for you to mimic. Also
make sure proftpd is in the directory where tcpd expects to find it's
daemons, usually /usr/sbin or /usr/libexec. Again, find an existing
tcpwrapped server and check that proftpd is in the same directory, or
symlink it. Once that's done you can use the hosts.allow and hosts.deny
files as normal.

--K