Re: ip access control | sshd_config

cooch17_at_NOSPAMverizon.net
Date: 03/28/05

  • Next message: buck: "Re: ssh message" 
    Date: Sun, 27 Mar 2005 18:17:21 -0500

    >
    >> if I restrict access to a certain ip in access.allow, then what
    >> advantage is there in also setting up what looks to be
    >> essentially the
    >> same thing in iptables? I'm embarassed to admit I've always
    >> puzzled
    >> over things such as this...
    >
    >Security is like an onion, if you have at least 2 layers
    >tcp_wrapper and iptables, you are still secure even if one fails
    >for misconfiguration or whatever reason.

    Sounds like sage advice. Thanks...

  • Next message: buck: "Re: ssh message"

    Relevant Pages

    • Re: (Off-topic) Software Information: "AutoCad for linux"
      ... I normally use iptables and key pairs to restrict access - there ... In order to access the guest OS, though, an attacker would first have to ...
      (Ubuntu)
    • Squid and IPFW
      ... order to restrict access to certain websites ... How can I redirect all traffic going to port 80 on the gw, ... Squid without setting this on each workstation? ... I know this can be done with iptables but i don't want to use iptables on ...
      (freebsd-questions)
    • Re: IPTABLES & TCP WRAPPERS
      ... >> Would it make sense to use both IPTABLES and TCP wrappers on a linux ... >An example: The ssh dictionary attacks. ... The only thing I can think of is if for some reason your ... How would a dictionary attack with a system setup with tcp wrappers ...
      (comp.os.linux.security)
    • Re: sendmail problem
      ... > iptables and ipchains. ... Then check /var/log/maillog after a failed connection to see if it is ... giving a reason. ...
      (comp.os.linux.networking)
    • Re: FTP Server behind masqueraded connection
      ... If you mean portforward using iptables, ... For some reason, ... ftp does some dynamic port allocation or something. ...
      (alt.linux)