TechRepublic: Linux 101: Basic network securityJun 10, 2000, 12:35 (0 Talkback[s])
(Other stories by Jack Wallen)
"Enterprise-wide security strategies require far more explanation than I can possibly include in a 101 series (or even a single article), so I'll just run through a simple method of locking down a machine on a LAN that is not behind a firewall and that needs quick and cheap protection from unwanted guests. Oh yes; I'll also keep in mind you'll be doing so with limited Linux knowledge."
"The /etc/hosts.* files are crucial to a simple network. (In fact, the /etc/hosts.deny file is crucial to the very powerful portsentry application.) The /etc/hosts.allow and /etc/hosts.deny files inform the system who can and who cannot enter the machine."
"The first stop for all incoming network traffic is /etc/hosts.allow. This particular file is set up in the following fashion: daemon_list : client_list"
Complete Story (free registration required)