Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Guide to the Secure Configuration of SUSE Linux Enterprise 15
Services
Obsolete Services
Xinetd
Ensure /etc/hosts.deny is configured
Ensure /etc/hosts.deny is configured
An XCCDF Rule
Details
Profiles
Prose
Ensure /etc/hosts.deny is configured
Medium Severity
The file
/etc/hosts.deny
together with
/etc/hosts.allow
provides a simple access control mechanism for network services supporting TCP wrappers. The following line in the file ensures that access to services supporting this mechanism is denied to any clients not mentioned in
/etc/hosts.allow
:
ALL: ALL
It is advised to inspect available network services which might be affected by modification of file mentioned above prior to performing the remediation of this rule. If there exist services which might be affected and access to them should not be blocked, modify the
/etc/hosts.allow
file appropriately before performing the remediation.