Re: Linux Firewall
- From: John <John@xxxxxxxxxxxxx>
- Date: Tue, 23 May 2006 16:31:58 GMT
On Tue, 23 May 2006 14:47:04 +0100, Mark wrote:
Hi all,
I run a stand-alone Linux workstation connected to broadband via a
nat-enabled router.
Does the following firewall script make sense to you guys(it seems to
work)? Any suggestions and comments would be much appreciated.
Also, I have only recently migrated to Linux (Suse) from M$ XP Pro. In
XP I could see and stop unnecessary services and I would like to do the
same in Suse. Which services are considered a potential security risk in
Linux/ Suse and how can they be stopped?
Regards,
Mark
Hello Mark,
I'm not an iptables expert so I have no opinion there. I use Guarddog to
write a script for me. You tell it what services you want to access from
the outside world (http, https, pop, smtp, usenet) and what services you
want to offer to the outside world (none) and it writes the script for
you. (Yes, I know real men write their own iptables scripts).
I think the correct answer about what services to run is *none*. Shut
them off by making their startup scripts non executable. You should
really disconnect the internet connection until you get this accomplished.
use this command to see if you have anything listening:
netstat -taun [enter]
if you see the word "listen" you have a risk factor, which may be
exploitable depending on the existence of weaknesses in the software that
is doing the listening. It is best if you don't see the word "listen" at
all.
hth.
John
.
- Follow-Ups:
- Re: Linux Firewall
- From: Mark
- Re: Linux Firewall
- From: s. keeling
- Re: Linux Firewall
- References:
- Linux Firewall
- From: Mark
- Linux Firewall
- Prev by Date: Linux Firewall
- Next by Date: Re: Multiple new packets with ACK or ACK,FIN bits set
- Previous by thread: Linux Firewall
- Next by thread: Re: Linux Firewall
- Index(es):
Relevant Pages
|
|
