White list off

General Discussion of atomic repo and development projects.

Ask for help here with anything else not covered by other forums.
Post Reply
BerArt
Forum Regular
Forum Regular
Posts: 478
Joined: Tue Jan 15, 2008 3:57 am
Location: Netherlands

White list off

Unread post by BerArt »

What is the difference between de host.allow and the ASL whitelist? And why is the ASL white list default “off” in de .conf?
best regards,

http://hosting.ber-art.nl
Professional Secure Linux Plesk Hosting
Top
scott
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 8355
Joined: Wed Dec 31, 1969 8:00 pm
Location: earth
Contact:
Contact scott

Unread post by scott »

ASL maintains a master whitelist is a global whitelist manager, for multiple components, including denyhosts, ossec, and mod_security. Otherwise whenever you wanted to whitelist something, you would need to do it in 3 different files.


This whitelist is further broken out into 2 levels:

1) Shun whitelists, that prevent the IP from being blocked completely, with either a firewall rule, or an addition to hosts.deny.

2) Application level whitelists (mod_security only). This turns off mod_security for the IP's on the whitelist. Most people should never have to use this.
Top
BerArt
Forum Regular
Forum Regular
Posts: 478
Joined: Tue Jan 15, 2008 3:57 am
Location: Netherlands

Unread post by BerArt »

So why is it off by default?
best regards,

http://hosting.ber-art.nl
Professional Secure Linux Plesk Hosting
Top
scott
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 8355
Joined: Wed Dec 31, 1969 8:00 pm
Location: earth
Contact:
Contact scott

Unread post by scott »

Because its dangerous
Top
BerArt
Forum Regular
Forum Regular
Posts: 478
Joined: Tue Jan 15, 2008 3:57 am
Location: Netherlands

Unread post by BerArt »

Thats clear, Thx again! :)
best regards,

http://hosting.ber-art.nl
Professional Secure Linux Plesk Hosting
Top
Post Reply

Return to “General Help and Development Discussion”