[arch-general] [arch-dev-public] dropping tcp_wrapper support
Vic Demuzere
vic at demuzere.be
Sat Jul 16 13:32:37 EDT 2011
On 16 July 2011 19:22, Andrea Scarpino <andrea at archlinux.org> wrote:
>
> old hosts.allow:
> sshd: 192.
> ntfs: 192.
>
> iptables:
> -A INPUT -j REJECT
> -A INPUT -p tcp -s 192.168.0.0/24 --dport ssh -j ACCEPT
> -A INPUT -p tcp -s 192.168.0.0/24 --dport nfs -j ACCEPT
> -A INPUT -p udp -s 192.168.0.0/24 --dport nfs -j ACCEPT
>
So, you're saying that those 4 lines are easier than the 2 short ones
in hosts.allow? Ah well, I'll have to learn to write iptables scripts
then, I suppose.
--
vic at demuzere.be :: http://vic.demuzere.be :: PGP: 0x6690CF94
My software never contains bugs, it just develops random features.
More information about the arch-general
mailing list