/etc/hosts.deny config

Robin Shannon · 08-21-2006, 03:31 AM

G'day all,

My hosts.deny file says the following

ALL: .example.net

and yet i can still get to somewhere.net with konqueror and firefox. I'm sure i am missing something real stupid here. Any ideas? Is there something else i have to do? Incase it is important my distro is i386 kubuntu 6.06.

paz,
-rjs.

gilead · 08-21-2006, 03:47 AM

You can get to example.net but they can't connect to daemons (that use tcp wrappers) running on your box. Are you trying to limit the hosts that you can connect to? If not, type man 5 hosts_access in a terminal window to get more info on this.

Robin Shannon · 08-21-2006, 03:54 AM

and that would be the big and stupid thing that i was missing. So the hosts file isn't going to stop me getting to a certain site. Is there any way of blocking access to certain sites without a full blown firewall?

paz,
-rjs.

gilead · 08-21-2006, 04:00 AM

You could use the Squid proxy server. You can set up access lists for sites by host, user, time, etc. The only downside is that if you're running a browser on the box running Squid (as opposed to using a client PC on your network) you'd need a firewall to stop someone bypassing Squid and connecting directly.

Robin Shannon · 08-21-2006, 06:02 AM

Yeah. I only have the one box. Thanks, i guess i will just set up a firewall then.

paz,
-rjs.