[ILUG] speaking of port sentry...

From: kevin lyda (kevin at domain suberic.net)
Date: Fri 28 Jul 2000 - 15:42:35 IST

Next message: kevin lyda: "Re: [ILUG] RH 6.2 Install via NFS/FTP - problem"
Previous message: Niall O Broin: "Re: [ILUG] RH 6.2 Install via NFS/FTP - problem"
Next in thread: Martin Feeney: "Re: [ILUG] speaking of port sentry..."
Reply: Martin Feeney: "Re: [ILUG] speaking of port sentry..."
Maybe reply: John Malone: "Re: [ILUG] speaking of port sentry..."
Reply: gary at domain netsoc.tcd.ie: "Re: [ILUG] speaking of port sentry..."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Mail actions: [ respond to this message ] [ mail a new topic ]

i was bored last night and installed it. my "firewall" at home
usually has the following running:

mysql - listening on 0.0.0.0:3306
nfs - /home,/u1,/u2 exported *(rw), and /mnt/cdrom *(ro)
lp, tftp, rlogin, sendmail, rwalld, etc...

I'M A LAZY BASTARD OK?!

this has been true for over a year and i'm dialed in a fair bit.
sometimes i download security updates.

so now portsentry is installed. /etc/exports limits to 192.168.5.0/24
what else? is there a quick ipchains rule to close out anything except
ssh connecting on ppp0? (ok ephemeral ports, and a port for gnutella
- 6346)

kevin

-- 
kevin at domain suberic.net       nothing witty here.
fork()'ed on 37058400
meatspace place: work

Next message: kevin lyda: "Re: [ILUG] RH 6.2 Install via NFS/FTP - problem"
Previous message: Niall O Broin: "Re: [ILUG] RH 6.2 Install via NFS/FTP - problem"
Next in thread: Martin Feeney: "Re: [ILUG] speaking of port sentry..."
Reply: Martin Feeney: "Re: [ILUG] speaking of port sentry..."
Maybe reply: John Malone: "Re: [ILUG] speaking of port sentry..."
Reply: gary at domain netsoc.tcd.ie: "Re: [ILUG] speaking of port sentry..."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2.1.6 : Thu 06 Feb 2003 - 13:07:01 GMT