The modifications listed here are for you to use at YOUR OWN RISK! they have been tested to acheive their goal but their security has not this may infact leave your set up vulnerable.
im not going to explain what this is...you can google or even wikipedia it yourself.
but heres the fix
the files we are going to be working with are as follows
/etc/inetd.conf
/etc/xinetd.conf (also uses PAM {can also google that yourself})
/etc/xinetd.d/
and for PAM we will also be using
etc/hosts.deny
etc/hosts.allow
warning-leave everything in the config alone and only add the following lines (after you replace the < > with their values) otherwise your internet for all general purposes will go BOOM!
For inetd
- Code: Select all
#wine stream tcp nowait <user> <path to wine>
#winmx stream tcp nowait.400 <user> <path to winmx.exe>
for xinetd
- Code: Select all
service wine
{
socket_type = stream
wait = no
nice = 10
user = <user>
server = <patch to wine>
rlimit_as = 8M
rlimit_cpu = 20
}
and
- Code: Select all
service winmx
{
socket_type = stream
wait = no.400
nice = 10
user = <user>
server = <path to winmx>
rlimit_as = 8M
rlimit_cpu = 20
}
For PAM
This is an extreme security risk (extreme for linux is clicking activex controls in IE)
and thus is not recomended for servers
in /etc/hosts.allow
- Code: Select all
ALL:ALL
and in /etc/hosts.deny
- Code: Select all
i suggest you add the blocklist your ISP and anyone else you dont trust
SitemapIndex
RSS Feed