Restrict services

• TCP wrappers (for inetd)

  • ensure that hosts.deny file ends ALL:ALL

• portmapper replacement

• different modes

  • e.g. sendmail -q

• restrictions within server program

• proper use of user/group

• routers can isolate well-known ports

Previous slide

Next slide

Back to first slide

View graphic version