“Enterprise-wide security strategies require far more
explanation than I can possibly include in a 101 series (or even a
single article), so I’ll just run through a simple method of
locking down a machine on a LAN that is not behind a firewall and
that needs quick and cheap protection from unwanted guests. Oh
yes; I’ll also keep in mind you’ll be doing so with limited Linux
knowledge.”
“The /etc/hosts.* files are crucial to a simple network. (In
fact, the /etc/hosts.deny file is crucial to the very powerful
portsentry application.) The /etc/hosts.allow and /etc/hosts.deny
files inform the system who can and who cannot enter the
machine.”
“The first stop for all incoming network traffic is
/etc/hosts.allow. This particular file is set up in the following
fashion: daemon_list : client_list”
Complete Story (free registration required)