Use libwrap with *channel RPC services

rocksclusters / base

Base roll for Rocks Clusters

http://www.rocksclusters.org/

25 stars 10 forks source link

Closed scottsakai closed 6 years ago

scottsakai commented 6 years ago

These services get dropped on random ports, making it hard to apply firewall rules. Use libwrap / tcpd to offer some additional security.

Also:

scottsakai commented 6 years ago

Also added input validation checks for kickstart.cgi, addressing some SQLi issues.