Thanks for your help on that... how are these other services started in
general? I assume that if I don't see some kind of process in the process
list, there's nothing that will start up automatically. Obviously, avoiding
the firewall has advantages in terms of simplicity (I seem to have trouble
making ipchains do what I want... perhaps I'm not reading the docs properly,
but I could always make ipfwadm work! ;) )
What services are automatic as far as the IP code goes, and how vulnerable
are they?
Jim
/ecc/hosts.deny|allow only manages the tcpd services access...
you might still be vulnerable to ICMP/UDP and other standalone
services...
with packet filtering, you have a greater level of control over
allowed & denied service access to your host.
