Jim C wrote:
Jack Coates wrote:
I know the shorewall question can be resolved, but as KevinO points out
it shouldn't be resolved by someone who's not fully aware of the issues
at stake.
In the last five days I've gotten nearly a thousand denied attempts to
relay spam mail through my server clog
Jack Coates wrote:
I know the shorewall question can be resolved, but as KevinO points out
it shouldn't be resolved by someone who's not fully aware of the issues
at stake.
In the last five days I've gotten nearly a thousand denied attempts to
relay spam mail through my server clogging up my logs
ut the GUI, then I will.
more FYI :-)
rgds
Frank
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Jim C
Sent: Sunday, 1 December 2002 2:32 AM
To: [EMAIL PROTECTED]
Subject: Re: [expert] Shorewall Follies - It's drivin' me NUTS!!
Why not suggest
s iptables rules...
Its on the same site as gShield.
rgds
Frank
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Jim C
Sent: Sunday, 1 December 2002 2:26 AM
To: [EMAIL PROTECTED]
Subject: Re: [expert] Shorewall Follies - It's drivin' me NUTS!!
Just use smoothwall.org its great, even if the developers are cocky and
not arogant :)
JG
Jim C wrote:
Why not suggest it? Surely they must have a means of getting input from
thier users and if they don't have a suggestion box perhaps they should
get one.
Want to buy your Pack or Services f
Why not suggest it? Surely they must have a means of getting input from
thier users and if they don't have a suggestion box perhaps they should
get one.
Franki wrote:
yeah, the new 2.8 version of gShield has alot of extra stuff I hadn't
expected..
Its one very good firewall..
I've been using i
Man, where were you 4 weeks ago. ;-)
Franki wrote:
yes, its called gShield.. (http://muse.linuxmafia.org/gshield.html)
...
wrappers for this sort of thing, though.
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
n't.. even support for stuff
you have to patch iptables to use.
rgds
Frank
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Ron Stodden
Sent: Saturday, 30 November 2002 11:32 PM
To: [EMAIL PROTECTED]
Subject: Re: [expert] Shorewall Follies - It&#x
Jack Coates wrote:
and I also recommended Monmotha for a reason :-) It's a lot easier than
shorewall because it only battens down the external interface.
I find gShield rated better than MonMotha. I use it. Very easy to
install as well.
http://muse.linuxmafia.org/gshield.html
--
Ron. [Melb
m: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Jim C
Sent: Saturday, 30 November 2002 10:48 AM
To: [EMAIL PROTECTED]
Subject: Re: [expert] Shorewall Follies - It's drivin' me NUTS!!
Jack Coates wrote:
> I know the shorewall question can be resolved, but as KevinO points out
>
On Fri, 2002-11-29 at 18:48, Jim C wrote:
> Jack Coates wrote:
> > I know the shorewall question can be resolved, but as KevinO points out
> > it shouldn't be resolved by someone who's not fully aware of the issues
> > at stake.
> >
> > In the last five days I've gotten nearly a thousand denied at
Well I've got the shorewall rules for samba figured out. Please correct
my work if I've made any mistakes. Port 445 is the port that XP/2K use
for this purpose and the website did not take XP/2K into account. Port
631 is a network printer which may be important when I get around to
putting u
On Fri, 2002-11-29 at 18:48, Jim C wrote:
> Jack Coates wrote:
> > I know the shorewall question can be resolved, but as KevinO points out
> > it shouldn't be resolved by someone who's not fully aware of the issues
> > at stake.
> >
> > In the last five days I've gotten nearly a thousand denied at
Jack Coates wrote:
I know the shorewall question can be resolved, but as KevinO points out
it shouldn't be resolved by someone who's not fully aware of the issues
at stake.
In the last five days I've gotten nearly a thousand denied attempts to
relay spam mail through my server clogging up my logs
http://www.monkeynoodle.org/lrp/lrp-firewall-faq.html
you can grep /etc/services to see what the port is supposed to be used
for. As far as what is really using it, netstat -atun and lsof might
give you some clues, as well as telnet localhost [portnumber].
On Fri, 2002-11-29 at 15:21, Jim C wrote
I know the shorewall question can be resolved, but as KevinO points out
it shouldn't be resolved by someone who's not fully aware of the issues
at stake.
In the last five days I've gotten nearly a thousand denied attempts to
relay spam mail through my server clogging up my logs right now in
chunks
OK, same problem.
Where can I find out the most common uses for individual ports and how
can I find out what a linux box is using those ports for?
Jim C wrote:
Thanks Sebastien. As you can see, there are only three files that are
different and only two of those matter. There is a problem howeve
Yes it is a poort security practice IF you have something to protect. My
system is a simple home system and of course I have limited resources that
dictate weather or not I even get a firewall or fileserver. Perhaps someday
when I have an old box I can use as a firewall I will set things up t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
This probably isn't what you want to hear but...
A firewall should be a firewall and NOT a file server. It is poor security
practice to put anything on a firewall box that is not absolutely required.
Use your existing box as a file server and get ano
HAaaAAAaaalp! ;-)
Background: Server is Mdk 9.0 and my two clients are XP boxes.
I can't get Samba, shorewall and Connection Shareing to play nice on the
same box. If two of them work then the third does not. The shorewall
website says to add these rules to /etc/shorewall/rules:
[]# cat rule
20 matches
Mail list logo
