The /etc/hosts.allow and /etc/hosts.deny files control the remote access settings, allowing you to allow or deny a client of an ip or ip segment to access a linux service. \\ If the hostname or IP requesting access is not included in /etc/hosts.allow, the tcpd process checks /etc/hosts.deny. See if the host name or IP requesting access is included in the hosts.deny file. If included, access is denied; if neither is included in /etc/hosts.allow nor included in /etc/hosts.deny, then this access is also allowed.
:[:
daemon list Service process name list, such as telnet service process name in.telnetd client list Access control client list, can write domain name, host name or network segment Such as .trubolinux.com.cn or 192.168.1. option Optional options, here can be some commands, or the specified log file
Example: hosts.allow in.telnetd:.vpser. Net vsftpd: 192.168.0. sshd:192.168.0.0/255.255.255.0
The first line in /etc/hosts.allow vpser.net means that only hosts in the vpser.net domain are allowed to access the TELNET service. , pay attention to the point (.) in front of vpser.net. The second line in /etc/hosts.allow indicates that only users on the network segment 192.168.0 are allowed to access the FTP service, paying attention to the dot (.) after 0. The third line in /etc/hosts.allow indicates that only users on the network segment 192.168.0 are allowed to access the SSH service. Note that this cannot be written as 192.168.0.0/24. Although the two are written in the CISCO router, they are equivalent.
Add in /etc/hosts.deny:
sshd:62.75.214.93 sshd:203.215.252.189 sshd:219.143.200.169 sshd:60.12.193.134 sshd:201.83.220.44 sshd:c953dc2c .virtua.com.br sshd:gera125.server4you.de
Refused all of them to access SSH, Linux GFW is also very strong.
About Linux shutdown and restart commands. In fact, the first article should write about Linux inst
you want under Linux How to install the jdk you want under Linux? Last time we talked about how to u
Ext2Fsd is a good tool for reading and writing Linux partitions. This software is introduced in the
With the rapid development of the Internet, more and more people use computers to obtain information
Snmp call script and independent log configuration
Arm linux boot process into the kernel
Linux system management and maintenance - cpio command
Modify Linux native IP, gateway and DNS server
How to modify the Linux runlevel value
VMware View4.5 Virtual Desktop Solution FAQ
Common file transfer commands and usage methods in Linux
Some powerful shell commands use basic tutorials
View the total size of all files in the Linux folder. Example
Ubuntu Linux 8.04 system JAVA environment configuration method
Windows 8.1 selects the location you go to after logging in
Automatically execute applications after Linux system login
Win10pin code can not log in how to do win10 set pin code can not log in solution
How to set the photo display mode of Win10 photo stickers
Novice talk about how to install a perfect system
Can Windows 10 10240 Pro be activated?
Cause analysis and solution for Win8 broadband connection error 638
Returning Holidays Play the slideshow photos in full screen with Win7