mirror of
https://github.com/inspec/inspec
synced 2024-12-22 19:13:24 +00:00
b23a58b573
* New Resource-combined etc_hosts_allow etc_hosts_deny Signed-off-by: dromazos <dromazmj@dukes.jmu.edu>
17 lines
733 B
Text
17 lines
733 B
Text
#
|
|
# hosts.deny This file contains access rules which are used to
|
|
# allow or deny connections to network services that
|
|
# either use the tcp_wrappers library or that have been
|
|
# started through a tcp_wrappers-enabled xinetd.
|
|
#
|
|
# See 'man 5 hosts_options' and 'man 5 hosts_access'
|
|
# for information on rule syntax.
|
|
# See 'man tcpd' for information on tcp_wrappers
|
|
#
|
|
# LOCALHOST (ALL TRAFFIC ALLOWED) DO NOT REMOVE FOLLOWING LINE
|
|
ALL: 127.0.0.1, [::1]
|
|
# Allow SSH (you can limit this further using IP addresses - e.g. 192.168.0.*)
|
|
sshd: ALL
|
|
# Added for testing
|
|
LOCAL : [fe80::]/10 : deny
|
|
vsftpd , sshd : 127.0.1.154, [:fff:fAb0::] : deny : /etc/bin/
|