Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

The black list of ips without firewall
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
pachanga
Tux's lil' helper
Tux's lil' helper


Joined: 03 Dec 2004
Posts: 123
Location: Russia, Penza
PostPosted: Fri Nov 25, 2005 9:12 am    Post subject: The black list of ips without firewall Reply with quote
Folks, what is the best way to implement a black list of ips which should be rejected on connecting to the certain port of the server?

My server doesn't have the packet filter support in kernel yet and while iptables stuff is not available i'd like to make such a black list manually.

Should i use hosts.deny for now? How would that look? Like something as following:

Quote:

sshd : xxxx.xxxx.xxxx.xxxx, yyyy.yyyy.yyyy.yyyy, ....

_________________
Gentoo community rocks! LIMB - a WACT powered CMF tested with SimpleTest
Back to top
View user's profile Send private message
Sleipnir
Guru
Guru


Joined: 20 Sep 2005
Posts: 372
Location: Germany
PostPosted: Fri Nov 25, 2005 10:11 am    Post subject: Reply with quote
According to the man page (man 5 hosts_access) this should work.
_________________
A)bort, R)etry, I)nfluence with large hammer.
Back to top
View user's profile Send private message
pachanga
Tux's lil' helper
Tux's lil' helper


Joined: 03 Dec 2004
Posts: 123
Location: Russia, Penza
PostPosted: Fri Nov 25, 2005 10:33 am    Post subject: Reply with quote
I used this approach and now i get "warning: /etc/hosts.deny, line 0: missing newline or line too long", i have about 200+ ips to block and all of them are on the same line :( How can i make multiple lines of ips for the same port?
_________________
Gentoo community rocks! LIMB - a WACT powered CMF tested with SimpleTest
Back to top
View user's profile Send private message
Sleipnir
Guru
Guru


Joined: 20 Sep 2005
Posts: 372
Location: Germany
PostPosted: Fri Nov 25, 2005 12:34 pm    Post subject: Reply with quote
Maybe you should just try it out. :)
Code:

in.sshd: ip1
         ip2
         ip3
         ip4

or
Code:

in.sshd: ip1
in.sshd: ip2
in.sshd: ip3

_________________
A)bort, R)etry, I)nfluence with large hammer.
Back to top
View user's profile Send private message
pachanga
Tux's lil' helper
Tux's lil' helper


Joined: 03 Dec 2004
Posts: 123
Location: Russia, Penza
PostPosted: Fri Nov 25, 2005 1:24 pm    Post subject: Reply with quote
Sleipnir wrote:
Maybe you should just try it out. :)


I'll give it a try and report here. BTW, what's "in." prefix mean? The incoming connection?
_________________
Gentoo community rocks! LIMB - a WACT powered CMF tested with SimpleTest
Back to top
View user's profile Send private message
pachanga
Tux's lil' helper
Tux's lil' helper


Joined: 03 Dec 2004
Posts: 123
Location: Russia, Penza
PostPosted: Wed Nov 30, 2005 10:38 am    Post subject: Reply with quote
Yep, it worked - splitting the long line into shorter ones. Thanks!
_________________
Gentoo community rocks! LIMB - a WACT powered CMF tested with SimpleTest
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2025 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy