[newbie] Please help with net-security setup
hy! i installed mandrake 8.0 without servers. i configured tiny firewall (everything no) with the mandrake control tool. i set security high in this tool, but he doesnt remember that. when logged in as a root this is set to high. logged in as a user i type netstat -l in a xterm: result: tcp0 0 *:1024 *:* LISTEN tcp0 0 *:blackjack *:* LISTEN tcp0 0 *:dwf *:* LISTEN tcp0 0 *:sunrpc*:* LISTEN tcp0 0 *:6000 *:* LISTEN tcp0 0 *:ipp *:* LISTEN udp0 0 *:1024 *:* udp0 0 *:xdmcp *:* udp0 0 *:sunrpc*:* udp0 0 *:ipp so, i have several servers running? -blackjack,sunrpc etc.. I then tried to use Bastille but it would (logged in as a root, in etc/usr and any other) display: [root@mymachine sbin]# InteractiveBastille Using Tk user interface module. Only displaying questions relevant to the current configuration. Can't locate Bastille_Tk.pm in @INC (@INC contains: /usr/lib /usr/lib/perl5/5.6.0/i386-linux /usr/lib/perl5/5.6.0 /usr/lib/perl5/site_perl/5.6.0/i386-linux /usr/lib/perl5/site_perl/5.6.0 /usr/lib/perl5/site_perl /usr/lib/perl5/site_perl/ /usr/lib/Bastille) at /usr/sbin/InteractiveBastille line 270. [root@smymachine sbin]# All i want to is to close all ports, but the ones i need to use for pop3,smtp,http,ftp,smtp,irc- no blackjack or stuff i dont know. my cableprovider does port-scans and if a user has some dangerous (spam!) server online the user would be disconnected forever... Thank you very much! Regards, Philipp
Re: [newbie] Please help with net-security setup
hy, i dont know if it was posted so i repost, sorry for any inconvenience. hy! i installed mandrake 8.0 without servers. i configured tiny firewall (everything no) with the mandrake control tool. i set security high in this tool, but he doesnt remember that. when logged in as a root this is set to high. logged in as a user i type netstat -l in a xterm: result: tcp0 0 *:1024 *:* LISTEN tcp0 0 *:blackjack *:* LISTEN tcp0 0 *:dwf *:* LISTEN tcp0 0 *:sunrpc*:* LISTEN tcp0 0 *:6000 *:* LISTEN tcp0 0 *:ipp *:* LISTEN udp0 0 *:1024 *:* udp0 0 *:xdmcp *:* udp0 0 *:sunrpc*:* udp0 0 *:ipp so, i have several servers running? -blackjack,sunrpc etc.. I then tried to use Bastille but it would (logged in as a root, in etc/usr and any other) display: [root@mymachine sbin]# InteractiveBastille Using Tk user interface module. Only displaying questions relevant to the current configuration. Can't locate Bastille_Tk.pm in @INC (@INC contains: /usr/lib /usr/lib/perl5/5.6.0/i386-linux /usr/lib/perl5/5.6.0 /usr/lib/perl5/site_perl/5.6.0/i386-linux /usr/lib/perl5/site_perl/5.6.0 /usr/lib/perl5/site_perl /usr/lib/perl5/site_perl/ /usr/lib/Bastille) at /usr/sbin/InteractiveBastille line 270. [root@smymachine sbin]# All i want to is to close all ports, but the ones i need to use for pop3,smtp,http,ftp,smtp,irc- no blackjack or stuff i dont know. my cableprovider does port-scans and if a user has some dangerous (spam!) server online the user would be disconnected forever... Thank you very much! Regards, Philipp