DragonFly users List (threaded) for 2005-09
Re: Portmap, -h, and /etc/hosts.allow
Dave Hayes wrote:
Is there a reason that portmap opens a TCP socket bound to INADDR_ANY,
despite being told with the -h switch not to? The source code clearly
-h Specify specific IP addresses to bind to for UDP requests.
Also, given a machine with two interfaces, 10.9.8.55 and 184.108.40.206
I've also noticed that adding
portmap : 10.9.8.0/255.255.255.0 : allow
portmap : ALL : deny
to the /etc/hosts.allow file will not block this TCP port from being
connected to via the 220.127.116.11 interface.
portmap doesn't use tcpwrappers (hosts.allow) but hosts_access.
I'd say this is a bug. Am I being too anal here?
Serve - BSD +++ RENT this banner advert +++ ASCII Ribbon /"\
Work - Mac +++ space for low $$$ NOW!1 +++ Campaign \ /
Party Enjoy Relax | http://dragonflybsd.org Against HTML \
Dude 2c 2 the max ! http://golden-apple.biz Mail + News / \