FWTK

[Matus Uhlar]

In cz.net.internet was written by Tomas Macak <tmacak at tuke.sk>:
-> Mam nainstalovany balik Firewall ToolKit 2.0 ( FWTK ) na multihome serveri s
-> Linuxom. ( multihome = server s viacerymi IP adresami ).
-> Chcem vsak zabezpecit, aby napr. telnet-gateway odpovedal len
-> po zadani len niektorej z tychto adries - bindnut ho len  na niektoru
-> z IP adries ( ako to robi napr. apache, squid ... ). telnet gateway je
-> spustany pomocou xinetd.

hmmm, tcp wrappery dokazu robit nieco take ako spustit rozne aplikacie ked
su bindnute na roznych adresach. Ale na to aby si pustil tcpd z xinetd musis
mat patch pretoze xinetd nedovoli specifikovat meno spusteneho programu ako
nulty parameter co xinetd robi; ja som taky patch urobil
(iirc ccsun.tuke.sk:/pub/security/tcpd_xinetd.patch)
a veselo pustam tcpd cez xinetd; (samozrejme musis rekompilovat tcpd co vsak
vrelo odporucam kazdemu pretoze linuxovsky tcpd je 'osklbana' verzia)
--
 Matus "fantomas" Uhlar, sysadmin of one server at SANET Kosice, Slovakia
 E-mail: Matus.Uhlar at tuke.sk ; WWW: http://ccsun.tuke.sk/users/uhlar
 And don't forget: I work for SANET, but talk for myself, dude... ;-)