I understand the basics of what you are saying, but apparently Guarddog blocks all incoming and outgoing traffic except on specified ports. I'll have to try another firewall gui (firestarter?). I want a simple firewall for feel good security, but I don't want to learn all about them.
Jonathan
SN wrote:
Ah boy, now it made the round and people get crazy.
Hey you don't have to block traffic from inside to outside, then in general you should block all ports and only open up ports you need for services that want to be accessed from outside. . The rsync problem only affects rsync servers not clients, clients aren't vulnerable, to do emerge sync you only need the client.
Guys please do me a favour don't get crazy now because a server got hacked through rsync, rather read some basics about firewalling.
----- Original Message ----- From: "Jonathan Stickel" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, December 04, 2003 7:14 PM
Subject: [gentoo-user] rsync port - firewall config
I've setup a firewall with Guarddog, which I use because it is relatively simple but seems to be comprehensive. However, it does not have rsync in its protocol list. I've tried to make a user-defined protocol for port 873 (which is the rsync port I believe), but it doesn't seem to work. I cannot use rsync unless I temporarily deactivate the firewall. As you know, allowing rsync is necessary to do an 'emerge sync'!
I'm wondering if anyone else uses Guarddog and has come up with a solution. If not, I will entertain simple iptable snippets that I can manually enter into the Guarddog generated /etc/rc.firewall.
Thanks, Jonathan
-- [EMAIL PROTECTED] mailing list
-- [EMAIL PROTECTED] mailing list
-- [EMAIL PROTECTED] mailing list