Hi folks:
I did an upgrade of OF 2.1b2 to 2.1 final. A customer asked me about
iptables (they need to be a secure site, and others around these parts
are requiring access controls due to SOX and other good governance
rules), and I had thought that it was installed. I port scanned the
machine only to see lots of open ports. I can lock it down of course,
but would it be possible to only open relevant ports, and specifically
only allow port 446 to be open by default upon loading? Then as each
service is enabled, the network access rules could be applied to IP
tables fairly easily.
Just a thought. If the network access rules are in a particular
location (db, flat file, ...), and you need something to emit an IP
tables config file, please let me know, I could probably put one
together pretty quickly.
Joe
--
Joseph Landman, Ph.D
Founder and CEO
Scalable Informatics LLC,
email: [EMAIL PROTECTED]
web : http://www.scalableinformatics.com
phone: +1 734 786 8423
fax : +1 734 786 8452 or +1 866 888 3112
cell : +1 734 612 4615
_______________________________________________
Openfiler-users mailing list
[email protected]
https://lists.openfiler.com/mailman/listinfo/openfiler-users
