3.4.3 Ensure /etc/hosts.deny is configured (Scored)

Level 1 - Server
Level 1 - Workstation 

The /etc/hosts.deny file specifies which IP addresses are not permitted to connect to the host. It is intended to be used in conjunction with the /etc/hosts.allow file.

The /etc/hosts.deny file serves as a failsafe so that any host not specified in /etc/hosts.allow is denied access to the system.

Run the following command and verify the contents of the /etc/hosts.deny file:

# cat /etc/hosts.deny 
ALL: ALL

Run the following command to create /etc/hosts.deny:

# echo "ALL: ALL" >> /etc/hosts.deny

Contents of the /etc/hosts.deny file may include additional options depending on your network configuration.