Bill Jonas on Wed, 23 Feb 2000 00:01:05 -0500 (EST) |
Safest thing to do, if you're not an ISP, is to put "ALL: ALL" in hosts.deny, and just put in hosts.allow the places you'll be connecting from, or the places you want people and/or services to connect from. Example: My hosts.allow looks something like this (I'm not at home right now): ALL: .netaxs.com ALL: .earthstation.net I did this so that I can leave my computer connected when I leave for work and telnet/ssh into it from work. The docs will tell you that tcpd reads hosts.allow first, and then hosts.deny, so obviously, this lets me use all services (before the colon is which services you're specifying, like "ALL" or "IN.telnetd") from any domain ending with netaxs.com or earthstation.net. (Y'all only use the knowledge of my machine for *good*, mmkay? ;) On Tue, 22 Feb 2000, John Lavin wrote: >Marc- > >That's what I believe it is... loopback seems to be the only thing I >have right now. I'm going through the whole isp-howto because it makes >some good points for security that I want to implement. Oh, like >modifying hosts.deny...... might be important... > >Thanks, >-john > >Marc Soda wrote: >> >> On Mon, 21 Feb 2000, you wrote: >> >> Sounds like your connected fine, those garbage characters are normal. Check >> your DNS. >> >> -Marc >> >> > Save those RTFM responses! I posted my question prematurely. I'm in >> > the ISP-HOWTO right now. I'm going to step through that right now and >> > see how things go. >> > >> > Sorry... >> > -john >> > -- >> > John Lavin, jlavin1@voicenet.com >> > >> > John Lavin wrote: >> > > >> > > Hello all - >> > > >> > > With this extra day off I've finally made time to walk through getting >> > > my PnP modem to work. >> > > >> > > *Synopsis: >> > > 1.) Tried isapnp and setserial. Attempted isapnp, it seemed to be okay, >> > > but no go. Then did setserial. That seems to have worked. >> > > 2.) I've gotten dialtone under Linux now and have (i think) successfully >> > > connected to Voicenet. >> > > 3.) I cannot browse, ftp, telnet, etc to the outside world though. I >> > > think I'm to the point of a network config problem now. >> > > >> > > *Details: >> > > I've walked through using (pnpdump >/etc/isapnp.conf). The isapnp.conf >> > > man page said to uncomment a INT and IO pair. I found one that seemed >> > > to me to be available and did (isapnp isapnp.conf). I've attached what >> > > I got below. I have two PnP cards - the first of which is my >> > > Soundcard. I left all those lines in my isapnp.conf file commented out >> > > for the time being. The second one is my modem. That's where I made my >> > > changes. >> > > >> > > Board 1 has Identity e0 1a da 83 f9 c3 00 8c 0e: CTL00c3 Serial No >> > > 450528249 [checksum e0] >> > > Board 2 has Identity 21 d2 9f cb 92 70 20 72 56: USR2070 Serial No >> > > 3533687698 [checksum 21] >> > > USR2070/3533687698[0]{U.S.Robotics Inc. Sportster 56000 Voice Internal >> > > }: Port 0x3E8; IRQ3 --- Enabled OK >> > > >> > > I then attempted to link /dev/modem to /dev/ttyS0 through /dev/ttyS3. >> > > Attempting to connect through KPPP: 0 & 1 gave me "Modem ready", then a >> > > "No response" message. No noises from my modem. ttys2 & 3 gave me a >> > > "Modem error" message. >> > > >> > > The next thing the HOWTO is saying is if that ain't working, use >> > > setserial. Well, I did "setserial /dev/cua2 auto_irq autoconfig". I >> > > was able to get a dialtone and connect to Voicenet! Sweeeet. My joy >> > > was short lived, however. I got a login prompt at the terminal, I >> > > logged in and it spat back my generated IP and some other info. I then >> > > started to get garbage characters in the terminal. At this point, KPPP >> > > thinks I'm connected & I was in agreement, but when I went to netscape >> > > and attempted good ole' slashdot.org, I was unable to locate. I have >> > > not changed anything for my network configuration yet. >> > > >> > > So.... what would be my next step here? It seems that I still haven't >> > > configured something else but I'm not exactly sure what I need to do >> > > next. >> > > >> > > TIA, >> > > -john >> > > -- >> > > John Lavin, jlavin1@voicenet.com >> > > >> > > ______________________________________________________________________ >> > > Philadelphia Linux Users Group - http://plug.nothinbut.net >> > > Announcements - http://lists.nothinbut.net/mail/listinfo/plug-announce >> > > General Discussion - http://lists.nothinbut.net/mail/listinfo/plug >> > >> > ______________________________________________________________________ >> > Philadelphia Linux Users Group - http://plug.nothinbut.net >> > Announcements - http://lists.nothinbut.net/mail/listinfo/plug-announce >> > General Discussion - http://lists.nothinbut.net/mail/listinfo/plug >> >> ______________________________________________________________________ >> Philadelphia Linux Users Group - http://plug.nothinbut.net >> Announcements - http://lists.nothinbut.net/mail/listinfo/plug-announce >> General Discussion - http://lists.nothinbut.net/mail/listinfo/plug > >______________________________________________________________________ >Philadelphia Linux Users Group - http://plug.nothinbut.net >Announcements - http://lists.nothinbut.net/mail/listinfo/plug-announce >General Discussion - http://lists.nothinbut.net/mail/listinfo/plug > Bill -- "Notice how altering $one in fact altered each element of @a. This is a feature, not a bug." -Schwartz & Christiansen, _Learning Perl, 2nd Edition_ Stop abusive software patents! Start typing http://www.noamazon.com ______________________________________________________________________ Philadelphia Linux Users Group - http://plug.nothinbut.net Announcements - http://lists.nothinbut.net/mail/listinfo/plug-announce General Discussion - http://lists.nothinbut.net/mail/listinfo/plug
|
|