
#-----------------------------------------------------------------------
# README
#-----------------------------------------------------------------------
#
# Telnet sends passweord in 'clear text'. This means anyone on your
# subnet (or the destination's) can sniff your password. You can over-
# ride this restriction by using the accept-[int]-telnet-servers option.
#
#-----------------------------------------------------------------------
# CHANGES
#-----------------------------------------------------------------------
#
# 2000-10-17  Jean-Sebastien Morisset <jsmoriss@jsm-mv.dyndns.org>
#             Initial module written for v5.0.
#
#-----------------------------------------------------------------------
# START OF MODULE CODE
#-----------------------------------------------------------------------

echo "Reject $INTOPT $NETADDR Port# $UNPRIVPORTS/tcp -> $ANY Telnet (logged)"
ipchains -A $OUTCHAIN -j REJECT -p tcp -y -s $NETADDR $UNPRIVPORTS -d $ANY telnet -l

