Re: Firewall program for Debian?
On Tue, Aug 21, 2001 at 05:11:32PM -0400, dman wrote: On Tue, Aug 21, 2001 at 01:48:11PM -0700, Brandon High wrote: | On Tue, Aug 21, 2001 at 03:58:57PM -0400, Han Yoo wrote: | | Basically, I have the 2.2.19 kernel. | Is any of the programs that you mentined easy enough to be utilized by a | Debian novice without going into the heavy-duty configuration? | | 2.2.x uses IP-chains for its packet filter. This will allow you to block | certain ports and provide IP masquerade functions, but won't give you the | alerting provided by ZoneAlarm. You'll need to install an IDS (intrusion | detection system) as well. ipchains and iptables have a logging facility so you can log packets if you want to. It is still up to you to actually read the logs though. | I can't recommend one offhand, but you may want to ask on debian-security. tripwire is one I've heard mentioned here before. Tripwire is not a firewall..rather it warns you about unexpected file permission changes etc. Quote Tripwire is a file integrity checker - a utility that com- pares a designated set of files and directories against information stored in a previously generated database. Added or deleted files are flagged and reported, as are any files that have changed from their previously recorded state in the database. When run against system files on a regular basis, any file changes would be spotted when Tripwire is next run, giving system administrators infor- mation to enact damage control measures immediately. End Quote Cliff -D -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Firewall program for Debian?
On Tue, Aug 21, 2001 at 03:58:57PM -0400, Han Yoo wrote: Basically, I have the 2.2.19 kernel. Is any of the programs that you mentined easy enough to be utilized by a Debian novice without going into the heavy-duty configuration? there is something called pmfirewall. http://www.pointman.org/PMFirewall/ sam -- (Sam Varghese) http://www.gnubies.com
Re: Firewall program for Debian?
* Sam Varghese ([EMAIL PROTECTED]) wrote: On Tue, Aug 21, 2001 at 03:58:57PM -0400, Han Yoo wrote: Basically, I have the 2.2.19 kernel. Is any of the programs that you mentined easy enough to be utilized by a Debian novice without going into the heavy-duty configuration? there is something called pmfirewall. http://www.pointman.org/PMFirewall/ sam -- (Sam Varghese) http://www.gnubies.com Also there is rcf firewall based on ipchains. Config file could not be simplier and it is virtually bug-free. I've used it for over a year now and have no complaints at all. I think the website is http://rcf.mvlan.net:8080/ I think they have a Debian package, but I always use their install script. It's all well done. Alex.
Firewall program for Debian?
Can someone recommend a decent and easy to use firewall program for Debian? (Something like ZoneAlarm...?) Thanks! Han _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com
Re: Firewall program for Debian?
On Tue, Aug 21, 2001 at 01:52:41PM -0400, Han Yoo wrote: | Can someone recommend a decent and easy to use firewall program for | Debian? | (Something like ZoneAlarm...?) Which kernel do you have? Take your pick from 'iptables' 'ipchains' and 'ipfwadm' depending on kernel version. (BTW, I've never seen ZoneAlarm, only heard the name before) -D
Re: Firewall program for Debian?
dman wrote: On Tue, Aug 21, 2001 at 01:52:41PM -0400, Han Yoo wrote: | Can someone recommend a decent and easy to use firewall program for | Debian? | (Something like ZoneAlarm...?) Which kernel do you have? Take your pick from 'iptables' 'ipchains' and 'ipfwadm' depending on kernel version. (BTW, I've never seen ZoneAlarm, only heard the name before) -D -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] Basically, I have the 2.2.19 kernel. Is any of the programs that you mentined easy enough to be utilized by a Debian novice without going into the heavy-duty configuration? Thanks. Han P.S. ( ZoneAlarm is for the Windows users...) _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com
Re: Firewall program for Debian?
Basically, I have the 2.2.19 kernel. Is any of the programs that you mentined easy enough to be utilized by a Debian novice without going into the heavy-duty configuration? If you use gnome, try 'firestarter'. It's just a gui-front end to ipchains/iptables. It obviously comes with some defaults that you're able to modify through the gui interface, but I don't know how strict or secure it starts out... It does create a 'script' that you can manipulate yourself once you get the hang of things. It's available here: http://firestarter.sourceforge.net/ If you use KDE, I'm sure there's something similar. Hall
Re: Firewall program for Debian?
On Tue, Aug 21, 2001 at 03:58:57PM -0400, Han Yoo wrote: | | dman wrote: | | On Tue, Aug 21, 2001 at 01:52:41PM -0400, Han Yoo wrote: | | Can someone recommend a decent and easy to use firewall program for | | Debian? | | (Something like ZoneAlarm...?) | | Which kernel do you have? | | Take your pick from 'iptables' 'ipchains' and 'ipfwadm' depending on | kernel version. (BTW, I've never seen ZoneAlarm, only heard the name | before) | | Basically, I have the 2.2.19 kernel. Then you will use ipchains. If/When you upgrade to the 2.4 series you will need to convert to iptables (or use the backwards compatibility module). | Is any of the programs that you mentined easy enough to be utilized | by a Debian novice without going into the heavy-duty configuration? You could install the 'ipmasq' package. It provides a basic ipchains configuration, though it is geared towards masquerading connections from an internal LAN. There is an excellent IPCHAINS Howto on linuxdoc.org that explains packet filtering, ipchains, and how to use it. I don't know how much protection the ipmasq package will provide though -- I still had CodeRed requests in my apache logs. (BTW, for those that are listening -- I didn't know enough about ipchains at the time to even check the configuration) HTH, -D
Re: Firewall program for Debian?
On Tue, Aug 21, 2001 at 03:58:57PM -0400, Han Yoo wrote: Basically, I have the 2.2.19 kernel. Is any of the programs that you mentined easy enough to be utilized by a Debian novice without going into the heavy-duty configuration? 2.2.x uses IP-chains for its packet filter. This will allow you to block certain ports and provide IP masquerade functions, but won't give you the alerting provided by ZoneAlarm. You'll need to install an IDS (intrusion detection system) as well. I can't recommend one offhand, but you may want to ask on debian-security. -B -- Brandon High [EMAIL PROTECTED] One of us is thinking about sex... OK, it's me. pgpXvCn5HFE9T.pgp Description: PGP signature
Re: Firewall program for Debian?
On Tue, Aug 21, 2001 at 01:48:11PM -0700, Brandon High wrote: | On Tue, Aug 21, 2001 at 03:58:57PM -0400, Han Yoo wrote: | | Basically, I have the 2.2.19 kernel. | Is any of the programs that you mentined easy enough to be utilized by a | Debian novice without going into the heavy-duty configuration? | | 2.2.x uses IP-chains for its packet filter. This will allow you to block | certain ports and provide IP masquerade functions, but won't give you the | alerting provided by ZoneAlarm. You'll need to install an IDS (intrusion | detection system) as well. ipchains and iptables have a logging facility so you can log packets if you want to. It is still up to you to actually read the logs though. | I can't recommend one offhand, but you may want to ask on debian-security. tripwire is one I've heard mentioned here before. -D