Mageia forum

[linuxdad]

Can someone please tell me what (is it msec) is resetting the /etc/hosts.deny file?

I removed the Deny entry:

#ALL:ALL EXCEPT 127.0.0.1:DENY

and found it had reappeared:

ALL:ALL EXCEPT 127.0.0.1:DENY

I am thinking that it's msec, but I don't want the hosts.deny file changed, as it removes my ability for remote access. GAH!

[doktor5000]

What security level did you set, either during install or later on via http://doc.mageia.org/mcc/3/en/content/msecgui.html
If you don't like msec, the regular scans and changes it does, simply remove it.

But you should probably take a look at the principle how this is thought to work. Deny everything except local connections,
and then allow specific connections via hosts.allow. Also maybe have a a look at https://wiki.mageia.org/en/Msec

AUTHORIZE_SERVICES Configure access to tcp_wrappers services (see hosts.deny(5)). If arg = yes, all services are authorized. If arg = local, only local ones are, and if arg = no, no services are authorized. In this case, To authorize the services you need, use /etc/hosts.allow (see hosts.allow(5)).

[linuxdad]

What package needs to be removed to eliminate msec?

I have found the Security Level settings in MCC, and have given remote access. For now I can live with this. Let's see how this pans out.

[doktor5000]

What package needs to be removed to eliminate msec?

Well, msec (and to be fair, msecgui too)

Code: Select all

urpme -a msec