From owner-FreeBSD-users-jp@jp.freebsd.org  Tue Jul 11 18:47:07 2000
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id SAA95770;
	Tue, 11 Jul 2000 18:47:07 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from home.bsdclub.org (home.bsdclub.org [202.227.26.94])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id SAA95765
	for <FreeBSD-users-jp@jp.freebsd.org>; Tue, 11 Jul 2000 18:47:06 +0900 (JST)
	(envelope-from futatuki@home.bsdclub.org)
Received: from galient.yf.bsdclub.org (localhost.bsdclub.org [127.0.0.1]) by home.bsdclub.org (8.9.3/3.7W) with ESMTP
	id SAA35889 for <FreeBSD-users-jp@jp.freebsd.org>; Tue, 11 Jul 2000 18:47:02 +0900 (JST)
Received: (from futatuki@localhost)
	by galient.yf.bsdclub.org (8.9.3/8.9.3) id SAA02951;
	Tue, 11 Jul 2000 18:46:52 +0900 (JST)
	(envelope-from futatuki)
Date: Tue, 11 Jul 2000 18:46:52 +0900 (JST)
Message-Id: <200007110946.SAA02951@galient.yf.bsdclub.org>
To: FreeBSD-users-jp@jp.freebsd.org
In-Reply-To: Your message of "Tue, 11 Jul 2000 05:16:24 -0400".
	<200007110913.FAA24948@earth.advok.com>
From: futatuki@bsdclub.org (Yasuhito FUTATSUKI)
X-Mailer: mnews [version 1.22] 1999-12/19(Sun)
Reply-To: FreeBSD-users-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+000315
X-Sequence: FreeBSD-users-jp 53308
Subject: [FreeBSD-users-jp 53308] Re: TCP_WRAPPER
 =?ISO-2022-JP?B?GyRCJEskRCQkJEYbKEo=?= 
Errors-To: owner-FreeBSD-users-jp@jp.freebsd.org
Sender: owner-FreeBSD-users-jp@jp.freebsd.org
X-Originator: futatuki@bsdclub.org

  $B$U$?$D$-$G$9!#(B

In article <200007110913.FAA24948@earth.advok.com>
hiro@mail.advok.com writes:
> $BB@ED$G$9!#(B
 
> > $B$3$l$OC<Kv(B192.168.10.12$B$+$i$N(B ftp $B@\B3$@$1$r5v2D$7$F!"$=$l0J30$+$i$O(B
> > $B5qH]$9$k@_Dj$G$9!#$7$+$7!"C<Kv(B192.168.10.12$B$+$i$N@\B3$b5qH]$5$l$^$9!#(B
> $B$O(B
>  		all : all	    : deny
>  		ftpd : 192.168.10.12 : allow
> $B$H@_Dj$7$^$9!#(B
> 
> $B=E$J$k@_Dj$O:G8e$N$b$N$,M-8z$K$J$j$^$9!#(B
> $B$D$^$j!"(B2. $B$@$H(B all $B$O(B 192.168.10.12 $B$+$i$N(B ftpd $B$r4^$`$o$1$G$9!#(B
> $B$G!"A4$F$N@\B3$O5qH]$5$l$k$o$1$G$9!#(B

  $B$"$l(B ? $B$$$D$N4V$K;EMM$,5U$K$J$C$?$s$G$9$+(B ?

> hosts_options(5) $B$r8+D>$7$F$/$@$5$$!#(B
> 
>        To permit access from specific hosts only:
>           ALL: .friendly.domain: ALLOW
>           ALL: ALL: DENY
>        To permit access from all hosts except a few trouble  mak-
>        ers:
>           ALL: .bad.domain: DENY
>           ALL: ALL: ALLOW
> 
> $B$H$"$j$^$9!#(B
> # DENY $B$H(B ALLOW $B$N0LCV$KCm0U(B!
 
  hosts_options(5) $B$O(B hosts_access(5) $B$N3HD%$H$$$&$3$H$G$9$,!"(B
hosts_options(5) $B$K$OI>2A=g=x$K$D$$$FFC$K?($l$i$l$F$$$J$$$N$G(B
hosts_access(5) $B$N5-=R$N0J2<$N5-=R$,M-8z$J$s$@$H$P$C$+$j(B
$B;W$C$F$$$^$7$?!#(B

ACCESS CONTROL FILES
       The access control software consults two files. The search
                                                       ^^^^^^^^^^
       stops at the first match:
       ^^^^^^^^^^^^^^^^^^^^^^^^

       o      Access will be granted when a (daemon,client)  pair
	      matches an entry in the /etc/hosts.allow file.

       o      Otherwise,  access  will	be  denied  when  a (dae-
	      mon,client)  pair   matches   an	 entry	 in   the
	      /etc/hosts.deny file.

       o      Otherwise, access will be granted.

       A  non-existing	access	control  file is treated as if it
       were an empty file. Thus, access control can be turned off
       by providing no access control files.


--
$B$U$?$D$-$d$9$R$H(B <futatuki@debug.gr.jp/futatuki@bsdclub.org>
$B0q>k8)FnCO6h(B BSD Users' Group DEBUG: http://www.debug.gr.jp/ 
$B%G%6!<%H$H(B BSD $B$N2q(B Desserts and Daemons:
        http://DandD.bsdclub.org/
