Restrict services
TCP wrappers (for inetd)
ensure that hosts.deny file ends ALL:ALL
portmapper replacement
different modes
e.g. sendmail -q
restrictions within server program
proper use of user/group
routers can isolate well-known ports
Previous slide
Next slide
Back to first slide
View graphic version