[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Examples of /etc/hosts.allow and /etc/hosts.equiv

To: terrence@xxxxxxxxxxxxxxxxxxxxxxxx
Subject: Examples of /etc/hosts.allow and /etc/hosts.equiv
From: Terrence Miao <terrence@xxxxxxxxxxxxxx>
Date: Mon, 31 Mar 2003 21:45:23 +1000
User-agent: Mutt/1.4i

#
# $Id: hosts.allow.src,v 1.114 2002/03/13 22:44:01 niels Exp $
# $Source: /src/config/common/etc/hosts.allow/RCS/hosts.allow.src,v $
#
# WARNING! This system configuration file is under RCS control!
#          Do not edit this file directly.  *ALL* changes should be made
#          via RCS in the source area.
#
# tcpd V7.2 allow file
# everything is done here, we don't use hosts.deny
# uses optional extensions (-DPROCESS_OPTIONS)

# deny list
ALL: damn.ucs.unimacq.EDU.AU U.ucs.unimacq.EDU.AU \
thirsty.ucs.unimacq.EDU.AU fun-tserv1.unimacq.EDU.AU titi.its.unimacq.EDU.AU \
tserv2.unimacq.EDU.AU tserv3.unimacq.EDU.AU tserv4.unimacq.EDU.AU \
tserv5.unimacq.EDU.AU 137.111.86. 137.111.238. \
miriworld.its.unimacq.EDU.AU miricle.its.unimacq.EDU.AU :\
rfc931: spawn (/usr/local/etc/tcpd_fail '%d' '%h' '%u' | /usr/ucb/Mail root ingres)&: twist /bin/echo "Access denied"

# port 33
sshd_prime : 137.111.196.6 : ALLOW
sshd_prime : 137.111.196.11 : ALLOW

## only allow rsh/rlogin from 150/146 subnets
#sshd rshd rlogind: 137.111.150. 137.111.146. : ALLOW
#sshdfwd-X11: 137.111.150. 137.111.146. : ALLOW
# allow y2k3 loopback via 127.0 and it's own ip
sshd: 127.0.0.1 : ALLOW
sshdfwd-X11: 127.0.0.1 : ALLOW
telnetd sshd: 137.111.58.132 : ALLOW
sshdfwd-X11: 137.111.58.132 : ALLOW
# only allow rsh/rlogin from 150/146 subnets
sshd: 137.111.146. : ALLOW
sshdfwd-X11: 137.111.146. : ALLOW

# allow 4th floor xterminals
sshd sshdfwd-X11: 137.111.108.0/137.111.108.192 : ALLOW

# pop3 testing
#ipop3d : 137.111.146.0/255.255.255.128 : ALLOW

#telnetd: ALL: ALLOW

# allow dave
#rshd rlogind: 137.111.20.7 : ALLOW

# Allow - campus, creswick, rmh (clinical school), rmh (firewall)
# ftpd telnetd: 137.111. 192.231.127. 203.2.83. 203.2.94. : ALLOW

# Allow - vcah
# ftpd telnetd: 203.5.64. 203.5.65. 203.5.66. 203.5.67. 203.5.68. \
# 203.5.69. 203.5.70. 203.5.71. : ALLOW

# Allow - localhost, y2k3 for extended uid testing - epl:20020321
#ftpd: 127.0.0.1 137.111.58.132 : ALLOW

# netatalk testing
afpd: 137.111.146.64/255.255.255.192 : ALLOW

# MERLIN user access to y2k3 for testing:
# michael1
sshd: 137.111.31.217 : ALLOW
# jra
sshd ftpd: 137.111.31.216 : ALLOW
# tterbah
sshd: 137.111.95.45 : ALLOW
# padwyer
sshd: 137.111.95.32 : ALLOW
# bar
sshd: 137.111.95.57 : ALLOW
# cmack
sshd: 137.111.95.76 : ALLOW
# kieraes
sshd: 137.111.95.67 : ALLOW
# srcalder
sshd: 137.111.95.50 : ALLOW
# mme
sshd: 137.111.95.65 : ALLOW
# lesm
sshd: 137.111.95.40 : ALLOW
# sjporter
sshd: 137.111.95.51 : ALLOW
# saichuen
sshd: 137.111.131.15 : ALLOW
# ctsc
sshd: 137.111.95.18 : ALLOW

# deny everything else
ALL: ALL: rfc931: spawn (/usr/local/etc/tcpd_fail '%d' '%h' '%u' | /usr/ucb/Mail root ingres)&: twist /bin/echo "Access denied"



# 
# *****************************************************************
# *                                                               *
# *    Copyright (c) Digital Equipment Corporation, 1991, 1997    *
# *                                                               *
# *   All Rights Reserved.  Unpublished rights  reserved  under   *
# *   the copyright laws of the United States.                    *
# *                                                               *
# *   The software contained on this media  is  proprietary  to   *
# *   and  embodies  the  confidential  technology  of  Digital   *
# *   Equipment Corporation.  Possession, use,  duplication  or   *
# *   dissemination of the software and media is authorized only  *
# *   pursuant to a valid written license from Digital Equipment  *
# *   Corporation.                                                *
# *                                                               *
# *   RESTRICTED RIGHTS LEGEND   Use, duplication, or disclosure  *
# *   by the U.S. Government is subject to restrictions  as  set  *
# *   forth in Subparagraph (c)(1)(ii)  of  DFARS  252.227-7013,  *
# *   or  in  FAR 52.227-19, as applicable.                       *
# *                                                               *
# *****************************************************************
#
# HISTORY
# 
# @(#)$RCSfile: hosts.equiv,v $ $Revision: 1.1.5.2 $ (DEC) $Date: 1993/10/29 19:37:05 $ 
# 
# Description:  The hosts.equiv file contains a list of trusted hosts.
#		It is used by the rsh, rlogin and rcp commands.
#
# Warning:  Listing hosts in this file can compromise system security.
#	    Include host names and user names in this file with caution.  
#
# Syntax: host1 [login_1]
#                .
#                .
#                .
#         host1 [login_n]
#
# host1  	name of a host considered trusted by the local system
# [login_n]	individual user on the trusted host that can log in 
#		without a password; if no users are specified then all 
#		users on the trusted host can log in without a password
#
# A single plus sign (+) on a line by itself signifies "match any".
# "Match any" implies *all* hosts are considered trusted.  Because
# of the security ramifications of this uncommenting the NO_PLUS
# keyword in the following line, globally turns off "match any".
#NO_PLUS

Prev by Date: Tip: find which files have content you looking for...
Next by Date: sis-test over SSL
Previous by thread: Tip: find which files have content you looking for...
Next by thread: sis-test over SSL
Index(es):
- Main
- Thread