Re: [PLUG] Firewall Check

Paul on Tue, 23 Sep 2003 14:32:04 -0400

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Firewall Check

From: Paul <emailme@dpagin.net>

To: plug@lists.phillylinux.org

Subject: Re: [PLUG] Firewall Check

Date: Tue, 23 Sep 2003 14:31:05 -0400

Reply-to: plug@lists.phillylinux.org

Sender: plug-admin@lists.phillylinux.org

User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.4) Gecko/20030624

Magnus Hedemark wrote:

ICMP Echo ("ping") is still passing through. There is a lot of controversy over whether this is a good thing or not. IMHO, while it does open up some possibility of attack, it is still a good thing.

What about TCP pings?

I need to open up the ssh port to give scanners something else to find!

BTW, I found that my "rules" file is letting pings through by default, even though my "policy" file is set to block all traffic originating from the Internet.

ACCEPT net fw icmp 8

_________________________________________________________________________ Philadelphia Linux Users Group -- http://www.phillylinux.org Announcements - http://lists.netisland.net/mailman/listinfo/plug-announce General Discussion -- http://lists.netisland.net/mailman/listinfo/plug

References:

[PLUG] Firewall Check
From: Paul <emailme@dpagin.net>

Re: [PLUG] Firewall Check
From: Magnus Hedemark <chrish@trilug.org>

Prev by Date: Re: [PLUG] Security Alert about VPN

Next by Date: RE: [PLUG] Firewall Check

Previous by thread: Re: [PLUG] Firewall Check

Next by thread: Re: [PLUG] Firewall Check

Index(es):

Date

Thread