On Saturday 04 May 2002 03:56 pm, Nicolae wrote: > > Message: 3 > I installed chains, and tried locking someone with the listed IP below. > > I read careful notes and such but I think the -d 0.0.0.0/0 etc worries > me. > > [root /etc]# tail ipchains.rules > > :input ACCEPT > :forward ACCEPT > :output ACCEPT > > -A input -s 0.0.0.0/0.0.0.0 -d 0.0.0.0/0.0.0.0 137:137 -p 6 -j REJECT -l > -A input -s 0.0.0.0/0.0.0.0 -d 0.0.0.0/0.0.0.0 138:138 -p 6 -j REJECT -l > -A input -s 0.0.0.0/0.0.0.0 -d 0.0.0.0/0.0.0.0 139:139 -p 6 -j REJECT -l > -A forward -s 0.0.0.0/0.0.0.0 -d 0.0.0.0/0.0.0.0 -j DENY [root /etc]# > ipchains -A input -j DENY -p all -l -s 65.170.79.187/0 -d 0.0.0.0/0
Yea, but you are blocking your own IP addresses > My BOX IPs are: 65.170.79.187 and 188. YOU FIGURE out what I did... > > p.s. Can this also be used to render the box useless and only way around > it is to "RECOVER ISO Disk" > and install everything from scratch? No, you can go in through the console port and fic it > It is sort of nice though, when your "lease" is up and you are not sure > what your co-location data > center might do with the box or data inside it.. just format everything > or "LOCK-UP" the box. Right? I would just erase all the files on the drive -- Gerald Waugh : Registered Linux user # 255245 http://www.frontstreetnetworks.com Front Street Networks LLC - ph. 203.785.0699 229 Front Street, Ste. #C, New Haven, CT, United States of America 4:32pm up 44 days, 0 min, 3 users, load average: 1.16, 1.03, 1.10 _______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
