On Mon, 9 Jul 2001, Ray Dermody wrote:
> .Being a newbie-ish person to linux whats the best way of going
> about running this at startup:
it's already done if you ran that for loop. :)
The:
/etc/rc.d/init.d/service stop
stopped it directly, and:
chkconfig service off
turned it off permanently. the for loop just did the above for both
ipchains and iptables. however, be warned that you now have no
firewalling, so if this box is internet accessible, you need to
either:
- configure your firewalling properly (there must a RH GUI tool for
it) and then re-enable firewalling.
or
- review what services are running on your box, (eg with "chkconfig
--list") and disable all unneccesary ones (eg, at a minimum, the 'r'
services, rlogin, rusers, r..., etc..).
- for the services you do want to run, make sure
/etc/hosts.{allow,deny} or other appropriate access control is
configured correctly and keep ahead of security updates. (read the
security section of lwn.net every week, better: the daily updates
every day.)
if you don't, and the box is on the internet, then it's just a matter
of time before it will be broken into.
> Thanks for your help
--paulj
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
