Chinaunix首页 | 论坛 | 博客
  • 博客访问: 769667
  • 博文数量: 180
  • 博客积分: 4447
  • 博客等级: 上校
  • 技术积分: 1582
  • 用 户 组: 普通用户
  • 注册时间: 2006-04-03 14:51
文章分类

全部博文(180)

文章存档

2014年(6)

2013年(8)

2011年(125)

2009年(35)

2008年(1)

2007年(5)

分类: LINUX

2011-05-11 09:34:10

TCP_Wrappers—spawn,twist

by kangsun on Feb.10, 2010, under Linux_RedHat

Tcp_Wrappers is used for firewall setting with RHEL 5, here we discuss two option spawn,twist’s usage and different
1、daemon list :client list :spawn command
executes command in a child process
default I/O is connected to /dev/null
//exmaple: allow user1 to access your ends by telnet, after I/O connected,spawn would write control in log,
# vim /etc/hosts.allow
in.telnetd:ALL:spawn /bin/echo `data` %h >>/var/log/telnet

2、deamon list : client list:twist command
server is replaced by command
default I/O is connect to client
Example:
# vim /etc/hosts.deny
vsftpd:192.168.0.:twist /bin/echo “421 connection prohibited.”
//when user from 192.168.0.0/24 access via vsftp,system would execute /bin/echo, than deny access

ps:you can use spwan (action1) | (action2) : twist (action3) to set up。

阅读(1773) | 评论(0) | 转发(0) |
给主人留下些什么吧!~~