PMfirewall is being reworked to use iptables,, it is in alpha state I
believe, shouldn't be too much longer...
I use pmfirewall and ipchains as the basis for all my rules, although my
rules files is about 8 times longer then that which pmfirewall install
script creates, I have found it to me a
You might have to redo the kernel and compile in support for ipchains to use
pmfirewall. There are similar things out for iptables, but there is an
easily configurable firewall/ipforwarding in 8.0 that uses iptables. In the
Mandrake control center, there is internet connnections sharing and
On Wednesday 01 August 2001 22:15, you wrote:
Forget PMFirewall. It doesn't fully support iptables yet. There is much
more to security than just a firewall, and Bastille can configure a
firewall and so much more.
On Thu, 2 Aug 2001 04:14, Errant wrote:
Hi all =)
Is there a way to use
there ain't one.
-s
On Sunday 06 May 2001 05:19 pm, you wrote:
I downloaded and installed PMfirewall on my Linux 7.2 system.
The Software does become active during the boot process, but I
am unable to access the GUI for the program. I can not seem to locate it.
Any suggestions
of Linux can be greatly enhanced. Thanks for your comments.
Dan LaBine
Registered Linux User #190712
- Original Message -
From: "Peter Smith" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Saturday, March 17, 2001 7:19 PM
Subject: Re: [newbie] PMFirewall and IPchains
---
To all!
As a followup to my previous post to the mandrake group, I did some
snooping around, and found something VERY interesting! Check out this
web-site for something you might find useful - http:/www.securepoint.cc .
They have a complete firewall kit which includes Linux and Windows
Peter,
Sounds like a very well informed opinion formed by someone who has done
their homework and put in the time.
Mark
Peter Smith wrote:
--- Dan LaBine [EMAIL PROTECTED] wrote:
snip!
Why are many Linux-based programs so complicated to
set up?? Here we are,
snip!
I'm no expert but
Dan LaBine
Registered Linux User #190712
- Original Message -
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Friday, March 16, 2001 3:01 PM
Subject: Re: [newbie] pmfirewall?
Hello All,
Thanks for all of the information. In response to your question Dan, I'm
using the internet on one P
Dan LaBine wrote:
Yeah, Chuck it does. Log in as root, open a terminal, and type the following
exactly (Without the quotes).
"ipchains -P forward DENY"
That oughtta do! Remember, each time you start your PC, you'll have to do
it, until someone sends you the instructions on how to
Dan...In some ways we're saying similar things, except as to the point
of "what" Pmfirewall is. And it is definately "not" a firewall, rather
it is merely a means to get the ipchains firewall rule-set configured to
a point to where it's functional. Notice I didn't say ready for prime
time, but
Getting back to PMfirewall leaving some ports open: I've got a
complete mental block when it comes to comprehending the ipchains rules.
I'm at even more of a total loss with the new iptables in 2.4.x kernels.
I have found that I can completely secure my box, all ports, using a
Tom,
That's how I've got my system running and I've found the combination to
a very good one. As for wrapping your brain around the IPchains rules
and such. I can appreciate how you're feeling having been there myself.
It took a little while of looking at the man pages and then reading and
PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Tom Brinkman
Sent: Saturday, 17 March 2001 11:29 PM
To: [EMAIL PROTECTED]
Subject: Re: [newbie] PMFirewall and IPchains
Getting back to PMfirewall leaving some ports open: I've got a
complete mental block when it comes to comprehending
Mark, Tom, and anyone else who can shed a little light on the subject;
Mark, Thanks for your response. And your support. I was about to "Light one
Up" when I received your email. I owe you one. And now for a question that's
probably going to open a "Can Of Worms". I will start by apologising up
Ok, so what are some good ways to convert PMFirewall rules to IPChains?
I'm running IPChains now, witht the rules set up by PMFirewall (added
a rule to close port 1024 which PMFirewall left open). But how do I
make it close (as opposed to filter) ports. ALso, any specific
unnecessary
On Saturday 17 March 2001 05:49 pm, Paul R wrote:
Ok, so what are some good ways to convert PMFirewall rules to IPChains?
PMfirewall is nothing more than a script you run, answer some
straightforward questions, and then it writes ipchains rules according to
the answers you give. .or
--- Dan LaBine [EMAIL PROTECTED] wrote:
snip!
Why are many Linux-based programs so complicated to
set up?? Here we are,
snip!
I'm no expert but I've got a few theories for you.
Theory 1:
Hacking code is fun. Writing a polished interface
isn't so much fun. Since most of what you use under
Dan LaBine wrote:
[EMAIL PROTECTED] wrote:
Hi,
I've just downloaded pmfirewall. I have some pretty bad questions as I am a
complete newbie. I want to get this up and running so that I can feel safe about
getting on the net. My question is, after I unzip it where should I point the
Hello All,
Thanks for all of the information. In response to your question Dan, I'm using the
internet on one PC. I have a cable modem. Running static, not DHCP. Just got it
working. Does this answer your questions? Let me know.
Thanks for your help!
Chuck
[EMAIL PROTECTED] wrote:
Hi,
I've just downloaded pmfirewall. I have some pretty bad questions as I am a
complete newbie. I want to get this up and running so that I can feel safe about
getting on the net. My question is, after I unzip it where should I point the file
when I untar it
On Thursday 15 March 2001 12:39, [EMAIL PROTECTED] wrote:
I've just downloaded pmfirewall. I have some pretty bad questions as I am
a complete newbie. I want to get this up and running so that I can feel
safe about getting on the net. My question is, after I unzip it where
should I point
Thanks for the input Dan. I have a cable modem that I just got up and running
connected to one PC. My ip address is 24.23.1.1. Like I said before, I don't know
much about IP chains. I've heard that they're kind of like ACLs. If anyone could
point me in the right direction that would be
If you don't have ipchains installed, go into rpmdrake and install it first.
Then after you untar it, type: cd pmfirewall-1.1.4/. Then type:
sh install.sh It will install to a common directory. Then answer the
questions. And if you're on a dial up select as your interface: ppp0.
Then
On Tuesday 02 January 2001 11:24 am, Jon Doe wrote:
I have used PMFirewall for a long time, I just installed Portsentry,
I can't seem to find where they keep logs or how you configure them
to keep logs any help?
Read this:
/usr/share/doc/portsentry-1.0/README.install (look at the other
Jon Doe [EMAIL PROTECTED] said:
I have used PMFirewall for a long time, I just installed
Portsentry, I can't
seem to find where they keep logs or how you configure them to keep
logs any
help?
/var/log/messages.
The dmesg command will also output logs from the kernel, which is
where
Dennis Myers wrote:
I would have to agree, mine does about a two page print of many different ports
and I haven't found the screen shot menu so I can't post it. But, based on
mine I would say yours is not set up to do a whole lot of good. When I set up
mine I said no to most of the ports
Eric Becker wrote:
Type ipchains -L to see if pmfirewall is running. If there's a whole bunch
of rules listed...then it's working. If it just says:
Chain input (policy ACCEPT):
Chain forward (policy DENY):
Chain output (policy ACCEPT):
If it just says that, and nothing else...then
.
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Ronald J. Hall
Sent: Tuesday, November 14, 2000 7:39 AM
To: [EMAIL PROTECTED]
Subject: Re: [newbie] PMFirewall question...
Eric Becker wrote:
Type ipchains -L to see if pmfirewall is running. If there's a whole
]
Subject: Re: [newbie] PMFirewall question...
Eric Becker wrote:
Type ipchains -L to see if pmfirewall is running. If there's a whole
bunch
of rules listed...then it's working. If it just says:
Chain input (policy ACCEPT):
Chain forward (policy DENY):
Chain output (policy ACCEPT
Type ipchains -L to see if pmfirewall is running. If there's a whole bunch
of rules listed...then it's working. If it just says:
Chain input (policy ACCEPT):
Chain forward (policy DENY):
Chain output (policy ACCEPT):
If it just says that, and nothing else...then it ain't working. You may
By "logged on the internet" do you mean dial-ed up? If so, ppp0 should be
your external interface, and any NIC card masquerading an internal network
should be the internal interface.
If you have cable and simply mean that you started using the internet, eth0
should probably be the right choice,
Rob wrote:
Hi,
well, I guess I got it up and running. but I would like to make sure that it
is up and running. How do test it? where do I look up the log file to see
if pmfirewall is running.OH yeah got portsentry up and running, how do
I test that?
Rob
Got to
On Tue, 12 Sep 2000, you wrote:
oh cool, I went to that site at www.grc.com and they probed it and tested my
internet security and they stated that they had no way of getting into my
computer.Which is great news! Now I can minimized my worriness about
someone messing up my system...
Rob wrote:
On Tue, 12 Sep 2000, you wrote:
oh cool, I went to that site at www.grc.com and they probed it and tested my
internet security and they stated that they had no way of getting into my
computer.
Just remember that GRC only tests a few certain well defined
ports.
Better
OK, I keep repeating myself, but it doesnt seem to do much good... so one
more time and I'm through:
www.grc.com is a decent site, and I'm not trying to knock it, but for linux
it doesn't hold much validity. It is a site for WINDOWS security, and tests
machines as though they are Windows boxes.
As for as I know Psionic does not make tripwire, they do however make some
awesome security products: Portsentry Hostsentry and Logcheck.
Logcheck and Portsentry can be run effectively under the IPchains firewall that
PMfirewall has configured for you.
Hey, I have aquestion for the group. I
None that I have seen.
Tripwire is best installed just after you install your system (not that this is
necessary, though)--so that you can see any differences between the clean install and
any alterations made thereafter.
- Original Message -
From: Dacia and AzureRose [EMAIL
Well, I'll be damned if my pesky crack habit didn't
jump up and bite me in the ass again!
Your right, it was Portsentry not trip wire.
Dacia
--- kdm [EMAIL PROTECTED] wrote:
As for as I know Psionic does not make tripwire,
they do however make some
awesome security products: Portsentry
I tryed PMfirewall on the following machine:
-networkcard : none
-internet connection: via ISDN card
-POP to retrieve from ISP (no IMAP)
Purposes:
Want to close all ports to the outside.
Installation:
On the untared pmfirewall dir ~/pmfirewall-1.1.4
Type: sh install.sh
The install proc.:
Thanks that is almost the same as I have except I used ppp0
and I blocked all address's except local 127.0.0.1/255.255.255.0
Thanks for your time . It now seems to work great
On Thu, 13 Jul 2000, you wrote:
I tryed PMfirewall on the following machine:
-networkcard : none
-internet
40 matches
Mail list logo