White list off
Posted: Sat Apr 19, 2008 8:42 am
What is the difference between de host.allow and the ASL whitelist? And why is the ASL white list default “off” in de .conf?
ASL maintains a master whitelist is a global whitelist manager, for multiple components, including denyhosts, ossec, and mod_security. Otherwise whenever you wanted to whitelist something, you would need to do it in 3 different files.
This whitelist is further broken out into 2 levels:
1) Shun whitelists, that prevent the IP from being blocked completely, with either a firewall rule, or an addition to hosts.deny.
2) Application level whitelists (mod_security only). This turns off mod_security for the IP's on the whitelist. Most people should never have to use this.
