Since Linux already comees with the tcpd wrapper, simply disallow those services to all except local in your hosts deny file. Oori Hasson.