I have a security related question...
I have a machine set up for IP Masquerading for a small local network. It
uses ipchains to set the masquerading policy to deny, but masquerade the
local network correctly.
All the services in inetd.conf are remarked out, except ftp (which we want
enabled).
What I want to know is, is this any less secure than setting up ipchains
rules to block unwanted connections? As far as I can tell, inetd won't
bother doing anything if the port isn't enabled anyway... is this correct?
Thanks,
Jim
