>Nice job, Dave (I have included the outline again). And daR, after
>checking to see that the above is done, I would like to know if your
>OUTSIDE port 139 is still open
>
>craig woods
>
>--
> 2:20am up 9:25, 2 users, load average: 0.00, 0.00, 0.00
I'll let you know Craig. I just hope I
basic, If anyone can
>add to thisyour welcome. But I would be suprised if the port 139 was still open
>from the exterior.
>
>Dave.
>
>
>Original Message:
>-
>From: daRcmaTTeR [EMAIL PROTECTED]
>Date: Thu, 31 Jan 2002 07:24:52 -0500
>To:
"[EMAIL PROTECTED]" wrote:
>
> Well; What are you default rules for your firewall, sensibly they should be
>something like this:
>
> iptables -P INPUT DROP
> iptables -P OUTPUT DROP
> iptables -P FORWARD DROP
>
> This will close all inbound connections to your box. (Be
[EMAIL PROTECTED]
Date: Thu, 31 Jan 2002 07:24:52 -0500
To: [EMAIL PROTECTED]
Subject: Re: [expert] What firewall to use in MDK 8.1
On Wed, 30 Jan 2002 20:02:21 -0600
"J. Craig Woods" <[EMAIL PROTECTED]> studiouisly spake these words to
ponder:
> daRcmaTTeR wrote:
> > >
On Wed, 30 Jan 2002 20:02:21 -0600
"J. Craig Woods" <[EMAIL PROTECTED]> studiouisly spake these words to
ponder:
> daRcmaTTeR wrote:
> > > >
> > > > thanks, but that didn't seem to make any difference. for what ever
> > > > reason iptables -A INPUT -p udp --dport -i ppp0 -j DROP
> > > > does
daRcmaTTeR wrote:
> > >
> > > thanks, but that didn't seem to make any difference. for what ever
> > > reason iptables -A INPUT -p udp --dport -i ppp0 -j DROP
> > > doesn't make any difference. port 139 remains open to the outer
> > > interface.
> > >
> > Just checking, ppp0 is your external
On Wed, 30 Jan 2002 17:31:58 -0500
David Stevenson <[EMAIL PROTECTED]> studiouisly spake these words to
ponder:
>
> >
> > thanks, but that didn't seem to make any difference. for what ever
> > reason iptables -A INPUT -p udp --dport -i ppp0 -j DROP
> > doesn't make any difference. port 13
EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of daRcmaTTeR
Sent: Monday, 28 January 2002 2:43 AM
To: [EMAIL PROTECTED]
Subject: Re: [expert] What firewall to use in MDK 8.1
On Fri, 25 Jan 2002 07:26:23 -0700
Lee Roberts <[EMAIL PROTECTED]> studiouisly spake these words to ponder:
&
>
> thanks, but that didn't seem to make any difference. for what ever reason
> iptables -A INPUT -p udp --dport -i ppp0 -j DROP
> doesn't make any difference. port 139 remains open to the outer interface.
>
Just checking, ppp0 is your external i/face?
Dave.
Want to buy your Pack or
2002 11:05 AM
To: [EMAIL PROTECTED]
Subject: Re: [expert] What firewall to use in MDK 8.1
On Tue, 29 Jan 2002 12:12:48 -0500
"Ronald J. Hall" <[EMAIL PROTECTED]> studiouisly spake these words to
ponder:
> daRcmaTTeR wrote:
> >
> > On Mon, 28 Jan 2002 06:35:30 -0
On Tue, 29 Jan 2002 12:12:48 -0500
"Ronald J. Hall" <[EMAIL PROTECTED]> studiouisly spake these words to
ponder:
> daRcmaTTeR wrote:
> >
> > On Mon, 28 Jan 2002 06:35:30 -0500
> > David Stevenson <[EMAIL PROTECTED]> studiouisly spake these words
> > to ponder:
> >
> > > OK, did you reflush/rest
daRcmaTTeR wrote:
>
> On Mon, 28 Jan 2002 06:35:30 -0500
> David Stevenson <[EMAIL PROTECTED]> studiouisly spake these words to
> ponder:
>
> > OK, did you reflush/restart your firewall?
> >
> > I am not an expert, but this is as far as my firewall knowledge goes.
> >
> > Dave.
> >
> > PS. My 13
On Mon, Jan 28, 2002 at 10:42:26PM -0500, daRcmaTTeR said:
>
> no, as a matter of fact I didn't. As far as I know that isn't necessary when
> adding a new rule to the firewall. of course I could be wrong in my
> understanding too. It's happened before. ;)
>
> i'll give it a try and see what happ
On Mon, 28 Jan 2002 06:35:30 -0500
David Stevenson <[EMAIL PROTECTED]> studiouisly spake these words to
ponder:
> OK, did you reflush/restart your firewall?
>
> I am not an expert, but this is as far as my firewall knowledge goes.
>
> Dave.
>
> PS. My 139 is closed.
no, as a matter of fact I
OK, did you reflush/restart your firewall?
I am not an expert, but this is as far as my firewall knowledge goes.
Dave.
PS. My 139 is closed.
On Sun, 27 Jan 2002 16:38:39 -0500
daRcmaTTeR <[EMAIL PROTECTED]> wrote:
> On Sun, 27 Jan 2002 20:22:15 -0500
> David Stevenson <[EMAIL PROTECTED]> stud
On Sun, 27 Jan 2002 20:22:15 -0500
David Stevenson <[EMAIL PROTECTED]> studiouisly spake these words to
ponder:
> Have you added the line:
>
> iptables -A INPUT -i ppp0 -p udp --dport 139 -j DROP
>
> to your iptables script.
>
> Dave.
>
as a matter of fact, yes...i did try that but it didn'
Have you added the line:
iptables -A INPUT -i ppp0 -p udp --dport 139 -j DROP
to your iptables script.
Dave.
On Sun, 27 Jan 2002 13:42:41 -0500
daRcmaTTeR <[EMAIL PROTECTED]> wrote:
> On Fri, 25 Jan 2002 07:26:23 -0700
> Lee Roberts <[EMAIL PROTECTED]> studiouisly spake these words to ponder
On Fri, 25 Jan 2002 07:26:23 -0700
Lee Roberts <[EMAIL PROTECTED]> studiouisly spake these words to ponder:
> I made the statement that none of my UDP ports are blocked. Most are
> showing closed but there are a couple showing open. I would have expected
> that the default policy would be DENY bu
At 08:08 AM 1/25/2002 -0500, daRcmaTTeR wrote:
>Lee Roberts wrote:
>>
>> At 08:47 AM 1/22/2002 -0600, Tom Brinkman wrote:
>> >On Tuesday 22 January 2002 01:34 am, Andrew George wrote:
>> >
>> >> Odd...I've got Bastille running and the UDP scan at sygatetech.com
>> >> can't find one open port
>> >
Lee Roberts wrote:
>
> At 08:47 AM 1/22/2002 -0600, Tom Brinkman wrote:
> >On Tuesday 22 January 2002 01:34 am, Andrew George wrote:
> >
> >> Odd...I've got Bastille running and the UDP scan at sygatetech.com
> >> can't find one open port
> >
> >That's my experience too Andrew, with several v
try gShield.rc
rgds
Frank
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Lee Roberts
Sent: Tuesday, 22 January 2002 11:18 AM
To: [EMAIL PROTECTED]
Subject: Re: [expert] What firewall to use in MDK 8.1
At 08:15 PM 1/21/2002 -0600, Mike White wrote
On Tue, 22 Jan 2002 15:12, you wrote:
> At 09:53 PM 1/21/2002 -0600, J. Craig Woods wrote:
> >At 08:18 PM 1/21/2002 -0700, Lee Roberts wrote:
> >>At 08:15 PM 1/21/2002 -0600, Mike White wrote:
> >> >I think Firestarter is the easiest to set up and run. It too closes up
> >> >your box real well.
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Tue, 22 Jan 2002 [EMAIL PROTECTED] wrote:
Just my 2 cents!
I use and prefer pcx_firewall! I've use Bastille before!
All my ports are on "stealth" mode, except one!
For the time being I am accepting ICMP pings but I can't cut that out
also!
[]s
At 09:12 PM 1/21/2002 -0700, Lee Roberts wrote:
>I've used tiny firewall, bastille firewall, and firestarter. When I go to
>sygatetech.com for port scans, none of the UDP ports are blocked and some
>UDP ports are open (most of the UDP ports are closed - not blocked). The
>TCP port blocks are set
At 09:53 PM 1/21/2002 -0600, J. Craig Woods wrote:
>At 08:18 PM 1/21/2002 -0700, Lee Roberts wrote:
>>At 08:15 PM 1/21/2002 -0600, Mike White wrote:
>> >
>> >I think Firestarter is the easiest to set up and run. It too closes up
>> >your box real well.
>> >
>>
>>And yet another firewall script tha
At 08:18 PM 1/21/2002 -0700, Lee Roberts wrote:
>At 08:15 PM 1/21/2002 -0600, Mike White wrote:
> >
> >I think Firestarter is the easiest to set up and run. It too closes up
> >your box real well.
> >
>
>And yet another firewall script that does NOT do a thorough job...
Hell, could you have b
At 08:15 PM 1/21/2002 -0600, Mike White wrote:
>
>I think Firestarter is the easiest to set up and run. It too closes up
>your box real well.
>
And yet another firewall script that does NOT do a thorough job...
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandra
Robert Goshko wrote:
> On Mon, 2002-01-21 at 16:53, [EMAIL PROTECTED] wrote:
>
>>I am running MDK 8.1 and wonder what the best firewall solution is to
>>install on my workstation. SNF is pretty cool but need to install that on a
>>seperate machine. Any other ideas?
>>
>>I am not new to linux,
On Mon, 2002-01-21 at 16:53, [EMAIL PROTECTED] wrote:
> I am running MDK 8.1 and wonder what the best firewall solution is to
> install on my workstation. SNF is pretty cool but need to install that on a
> seperate machine. Any other ideas?
>
> I am not new to linux, however networking and fire
29 matches
Mail list logo
