3.4.3 Ensure /etc/hosts.deny is configured (Scored)

Level 1 - Server
Level 1 - Workstation 

The /etc/hosts.deny file specifies which IP addresses are not permitted to connect to the host. It is intended to be used in conjunction with the /etc/hosts.allow file.

The /etc/hosts.deny file serves as a failsafe so that any host not specified in /etc/hosts.allow is denied access to the system.

Run the following command and verify the contents of the /etc/hosts.deny file:

# cat /etc/hosts.deny 

Run the following command to create /etc/hosts.deny:

# echo "ALL: ALL" >> /etc/hosts.deny

Contents of the /etc/hosts.deny file may include additional options depending on your network configuration.

  • centos7/3/4/3.txt
  • Last modified: 2017/05/04 17:30
  • by