Oracle® Solaris 11 Security Guidelines

Exit Print View

Updated: August 2014

How to Use TCP Wrappers

The following steps show three ways that TCP wrappers are used or can be used in Oracle Solaris.

Before You Begin

You must assume the root role to modify a program to use TCP wrappers.

  1. You do not need to protect the sendmail application with TCP wrappers.

    By default, it is protected with TCP wrappers, as described in Support for TCP Wrappers From Version 8.12 of sendmail in Managing sendmail Services in Oracle Solaris 11.2 .

  2. To enable TCP wrappers for all inetd services, see How to Use TCP Wrappers to Control Access to TCP Services in Administering TCP/IP Networks, IPMP, and IP Tunnels in Oracle Solaris 11.2 .
  3. Protect the FTP network service with TCP wrappers.
    1. Follow the instructions in the /usr/share/doc/proftpd/modules/mod_wrap.html module.

      Because this module is dynamic, you must load it to use TCP wrappers with FTP.

    2. Load the module by adding the following instructions to the proftpd.conf file:
      # pfedit /etc/proftpd.conf
      <IfModule mod_dso.c>
          LoadModule mod_wrap.c
    3. Restart the FTP service.
      # svcadm restart svc:/network/ftp