On Monday 14 January 2002 06.29, JW wrote:
However, I tried copying SuSE's entry for http-rman and it does no good, I can still log in from anywhere. (which makes me thing it's insecure too - can anyone explain that?)
This is wrong. telnet by itself is no more insecure than any other service that allows logins from the net. Its insecurity comes from the fact that it sends passwords (and everything else) in cleartext. So it's only insecure if you actually use it over the net.
IF someone could tell me the syntax for denying telnet to everything _except_ 10.0.0* I'd really appreciate it.
in /etc/hosts.deny ALL:ALL or, if you have other services with specific permissions, use in.telnetd: ALL in /etc/hosts.allow in.telnetd: 10.0.0.* should do it. regards Anders