Nothing yet, it's being a linux firewall, doing NAT, allowing only traffic that was initiated from the inside LAN. With iptables -m state --state RELATED,ESTABLISHED
Now behind that is gonna be a DMZ and a LAN, so I wanted to know the risks of the firewall being compromised (the firewall linux server will have no open ports at all, not even for maintenance on the inside. I need it to be as secure as I can get it) Kind regards, Ferry van Steen InfoPart Automatisering B.V. Beeksestraat 24 4841 GC Prinsenbeek Phone: +31 (0)76 - 5 44 04 11 Fax: +31 (0)76 - 5 41 83 51 Mobile: +31 (0)6 - 28 46 47 45 E-Mail (business): [EMAIL PROTECTED] E-Mail (private): [EMAIL PROTECTED] MSN Messenger: [EMAIL PROTECTED] ICQ (UIN (seldom used)): 191458 -----Original Message----- From: joelf [mailto:[EMAIL PROTECTED]] Sent: donderdag 11 juli 2002 3:59 To: [EMAIL PROTECTED] Subject: Re: Cracking a server without services If no ports are open, what is the server serving? --- Ferry van Steen <[EMAIL PROTECTED]> wrote: > Hey there, > > I was just wondering. I know the rule is everything can be cracked. But can > anyone point me to info on how to crack something with no ports open or/and > perhaps tell me how that's called (so I can search...). To me it seems > impossible but I have a feeling that's a false sense of security and I'd > like to get a better understanding of this so I can take appropiate actions > on my servers. Also I think this knowledge will come in handy in the future > since I gotta write a firewall on linux for a DMZ and LAN set up in like a > week or so and I don't want to tell my boss that the webserver is the only > thing that can be cracked because that's the only service we run if that > ain't so, although the chance someone with that knowledge/expertise will > hunt us will probably be nihil. > > Kind regards, > > Ferry van Steen > InfoPart Automatisering B.V. > Beeksestraat 24 > 4841 GC Prinsenbeek > Phone: +31 (0)76 - 5 44 04 11 > Fax: +31 (0)76 - 5 41 83 51 > Mobile: +31 (0)6 - 28 46 47 45 > E-Mail (business): [EMAIL PROTECTED] > E-Mail (private): [EMAIL PROTECTED] > MSN Messenger: [EMAIL PROTECTED] > ICQ (UIN (seldom used)): 191458 > > >
