
#-----------------------------------------------------------------------
# Copyright (C) 2000-2001, Jean-Sebastien Morisset <jsmoriss@mvlan.net>
#-----------------------------------------------------------------------
# $Id: telnet,v 1.4 2001/08/11 17:01:21 jsmoriss Exp $
#-----------------------------------------------------------------------
# README
#-----------------------------------------------------------------------
#
# Telnet sends passwords in 'clear text'. This means anyone on your
# subnet (or the destination's) can sniff your password. You can over-
# ride this restriction by using the accept-[int]-telnet-servers option.
#
#-----------------------------------------------------------------------
# START OF MODULE CODE
#-----------------------------------------------------------------------

echo "Reject $INTOPT $NETADDR Port# $UNPRIVPORTS/tcp -> $ANY Telnet (logged)"
ipchains -A $OUTCHAIN -j REJECT -p tcp -y -s $NETADDR $UNPRIVPORTS -d $ANY telnet -l

