You should use SuSEfirewall2 and do rules this way and not with hosts files IMHO. Sounds like this ystem is on a Network (10.10.10) that is private, or not direct to the internet. Just split the rules for ext/int and make the telnet available on the int network to a specific ip. Regards, Jon ----- Original Message ----- From: "JW" <jw@centraltexasit.com> To: <suse-linux-e@suse.com> Sent: Sunday, January 13, 2002 9:29 PM Subject: [SLE] Need help with hosts.deny
Hello,
I'm having an issue with SSHd on a server that's a very long distance away from me. I want to open telnet up as a backup but _only_ to the net 10.0.0.* which FYI is on eth1.
I want everything else (which would be eth0, if it matters) denied.
However, I tried copying SuSE's entry for http-rman and it does no good, I can still log in from anywhere. (which makes me thing it's insecure too - can anyone explain that?)
Anyway, I've read the man page (which is one of the worse I've ever seen) and I've read some articles on the web. For one thing, none of the examples for, and for another, they all disagree.
IF someone could tell me the syntax for denying telnet to everything _except_ 10.0.0* I'd really appreciate it.
---------------------------------------------------- Jonathan Wilson System Administrator
Cedar Creek Software http://www.cedarcreeksoftware.com Central Texas IT http://www.centraltexasit.com
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/support/faq and the archives at http://lists.suse.com