I guess because even if a port is open, packets will not be sent to the listener for that port unless iptables allows it.
But you still make a good point. I'll look at that too. Kevin On 8/17/05, Zeno Davatz <[EMAIL PROTECTED]> wrote: > On 8/17/05, Kevin Toppenberg <[EMAIL PROTECTED]> wrote: > > I am trying to review the security on my system. > > > > I wonder if some of you linux gurus would be willing to look at my > > iptables -L output and make sure I don't have any holes in my software > > firewall setup. > > > > If anyone is willing, post a reply and I'll send it off list. > Stupid question: Why are you using Iptables and not nmap. > > With "nmap localhost" you will get all your open ports. If you want to > close a port you must stop the service that uses the port. > > Best > Zeno > > > ------------------------------------------------------- > SF.Net email is Sponsored by the Better Software Conference & EXPO > September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices > Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA > Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf > _______________________________________________ > Hardhats-members mailing list > Hardhats-members@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/hardhats-members > ------------------------------------------------------- SF.Net email is Sponsored by the Better Software Conference & EXPO September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf _______________________________________________ Hardhats-members mailing list Hardhats-members@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/hardhats-members
