|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
|
Re: [PLUG] portmap and other things
|
also sprach Jason Wertz (on Tue, 06 Mar 2001 03:46:49PM -0500):
> portmap is only required for rpc stuff right? No NFS and only ssh
> logins means no need for portmap, correct?
yes. by definition. it's the remote process communication layer.
> I've been reading a lot about identd, and I'm still not sure why I
> should run it. Can anybody shed a little light on this? I'm looking
> to shut down services even tighter then they are already on my box.
identd is a good thing to have. it allows a remote computer (like an
smtp server) to connect to your machine and find out who just made
that request. obviously nicely configurable, identd is required for
some applications, namely irc.
i run oidentd and it's very safe and doesn't run as root.
> I've also been running portsentry for a while and it seems to be
> doing a good job. Does anybody have any good or bad experiences with
> it.
is this the thing which answers queries at all unbound ports? if so,
sure. but security by obscurity isn't all it takes to lock down a
system!
martin
[greetings from the heart of the sun]# echo madduck@ !#:1:s@\@@@.net
--
above all, we should not wish to divest
our existence of its rich ambiguity.
-- nietzsche
______________________________________________________________________
Philadelphia Linux Users Group - http://www.phillylinux.org
Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce
General Discussion - http://lists.phillylinux.org/mail/listinfo/plug
|
|