Re: Disabling telnet on Linux iptables firewall

On Sun, 29 Oct 2006 10:57:15 -0600, Moe Trin wrote:

Why are you using such an old release?

Good afternoon, Old Guy.

On that particular machine I have no choice. If it were up to me I'd have
upgraded to at least FC5 long ago.

The second choice is to either remove or disable the undesired clients.
Disabling them is likely the better choice

Yes, I didn't think of that, that sounds like the best choice. As has
been said here, though, it doesn't prevent people from installing their
own clients and using them.

In your list of allowed traffic, you don't mention 'ftp' but that is needed
to keep your system up to dates. Admittedly, this is going to be quite
difficult for FC2, but you should be aware of your responsibility.

Thanks. I have no need to keep this machine up to date; as you say it's
obsolete anyway.

I am allowing sftp rather than ftp.

Others here have also mentioned that firewalls filter ports and not
protocols... yes, I'm aware of that and when I mentioned protocols I
assumed they'd be on their default ports ... not always a valid assumption
I know...

.