[rescue] TCP Wrappers on Solaris question...

Phil Stracchino phil.stracchino at speakeasy.net
Wed Feb 1 09:58:32 CST 2006

Patrick Giagnocavo 717-201-3366 wrote:
> I have a strange TCP Wrappers question.
> I want to start to create a "blacklist" of hosts that should never be allowed to connect to my Solaris box.  At the same time, anything not on the blacklist, should be allowed through.
> What is the proper incanation in the hosts.allow and hosts.deny to make this happen?  The examples I see would work for say, 5 IPs (like "ALLOW EXCEPT") but would quickly become cumbersome when dealing with say 50 IPs.
> Is there a way to reference an external list of IPs so that I can just maintain a simple list and point TCP Wrappers to it?
> "The man pages .... they do nothing!" in this case.

Since not everything uses TCPwrappers, I'd say this is a job for a firewall.

 Phil Stracchino       phil.stracchino at speakeasy.net
    Renaissance Man, Unix generalist, Perl hacker
 Mobile: 603-216-7037         Landline: 603-886-3518

More information about the rescue mailing list