I have a server set up on a Mandrake 9.2 system with the secure kernel. Whenever anyone tries to access services such as ssh, or pop, they get a connection refused, and in my syslog I get a line that says something like "connection to (service) blocked by tcpwrappers" or something like that, I cant recall the exact wording.
I think that this is something with the hosts.allow and hosts.deny, which I tried messing with. I tried adding ALL : ALL : ALLOW to the hosts.allow, but surprisingly that didnt make a difference, however, when I removed the line that says ALL : ALL except 127.0.0.1 : DENY from the hosts.deny, anyone can connect to the services. From what I read, I was under the impression that hosts.allow supercedes the hosts.deny, so adding the ALLOW line in hosts.allow should have basically eliminated what the hosts.deny file was showing. Now, I would just edit the hosts.deny, but I dont know exactly what to put, and even if I did, Mandrake seems to reset that file every 15 minutes or so.
I tried editing the access stuff in the webmin module xinetd, which now says to allow all for the services I have running, but that doesnt seem to help either. I have also installed a firewall and allowed access to the ports for the services to see if that would make a difference, it did not. The only services that people are able to connect to are HTTP, FTP, and webmin on port 10000
How do I fix this?
