[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [vps-mail] Packet filter

Subject: Re: [vps-mail] Packet filter
From: Harrison Hind <hhind@xxxxxxxxxxxxx>
Date: Mon, 27 Sep 2004 18:45:42 +0000

On Mon, Sep 27, 2004 at 10:43:36AM -0700, Dale Britt wrote:
> 
> What is the difference between blocking IP's in the etc/hosts.allow file
> versus in the httpd.conf file?
> 
  The difference is that apache reads httpd.conf and doesn't read 
etc/hosts.allow.  There is a library (libwrap) that includes functionality to 
parse and understand hosts.allow.  There are a number of applications that 
are "libwrap aware" and therefore key off the hosts.allow file.  From what I 
can ascertain, these include inetd, sendmail, and sshd.
  Therefore, it is up to the application to determine how it stores its 
configuration information (in particular which IP addresses to block).  I 
believe that the original point of this thread was to ask the question of 
whether there is a lower-level firewalling procedure available that would 
happen before the application layer.  Sorry, but I don't know any answer to 
that.

Harry.
======================================================================
This is <vps-mail@xxxxxxxxxxxx>       <http://www.perlcode.org/lists/>
Before posting a question, please search the archives (see above URL).

Follow-Ups:
- Re: [vps-mail] Packet filter
  - From: Wilson Pickett

References:
- [vps-mail] Packet filter
  - From: Godwin Stewart
- Re: [vps-mail] Packet filter
  - From: Scott Wiersdorf
- Re: [vps-mail] Packet filter
  - From: Godwin Stewart
- Re: [vps-mail] Packet filter
  - From: Wilson Pickett
- Re: [vps-mail] Packet filter
  - From: Dale Britt

Prev by Date: Re: [vps-mail] Packet filter
Next by Date: Re: [vps-mail] Packet filter
Previous by thread: Re: [vps-mail] Packet filter
Next by thread: Re: [vps-mail] Packet filter
Index(es):
- Date
- Thread

Main Index | Thread Index