its useless to have my services open to the world. I'm just being attacked or exposed. So lock down only to local or selective country by using inetd deny.hosts all:all and hosts.allow whatever needed only. IPs is too much and they change a lot. Do I expect to sell or buy from .ar or .cn.com. No! Just block the whole thing. IPs with no proper reverse should be denied access all together. We'll save millions of ipv4 addresses too. Reuse some with proper routing.
A Pretty Please (even with a cherry on top) to developers as to compile with tcp-wrappers all services, and finally have some easy access over the network.
Your honest aging BOFH
Εγγραφή σε:
Σχόλια ανάρτησης (Atom)
Δεν υπάρχουν σχόλια:
Δημοσίευση σχολίου