DukeNM wrote:

> i tried to disable all requests comming to my server except for
> sendmail using /etc/hosts.deny and /etc/hosts.allow
[...]
> but when i try to access the server webpage using browser it works
>
> how very strange. shouldnt httpd server access be blocked ??

Only if run through (x)inetd.

$ man 5 hosts.deny
DESCRIPTION
This manual page describes a simple access control language
that is based on client (host name/address, user name), and
server (process name, host name/address) patterns. Examples are
given at the end. The impatient reader is encouraged to skip to
the EXAMPLES section for a quick introduction.

The extended version of the access control language is described
in the hosts_options(5) document. Note that this language
supersedes the meaning of shell_command as documented below.

In the following text, daemon is the the process name of a
network daemon process, and client is the name and/or address of
a host requesting service.
Network daemon process names are specified in the inetd
configuration file.

--
Met vriendelijke groet / Best regards,
Jan Reilink
Dutch Security Information Network,
http://www.dsinet.org