Mr. Woods Thank you very much for replying to my post. port 139 I was leaving open for samba. I use samba so that I can download stuff straight from the internet to my linux box from my Win2K box. (At least I was back when my win2K box could connect to the internet). As for port 6000 I may want to close that up you're right but right now I more concerned with removing security than adding anything. I am trying to remove everything that stupide Firewall GUI added. If u look at my original post you'll see I've flushed my iptables and removed any file beginning with rc.firewall* from my rc.d directory. And obviously before I took any of those measures I went through the firewall GUI itself and undid as much as possible. You're right I need someone who knows what the f#$k the 'Tiny Firewall' GUI does, I'm finding that impossible. I even paid $15 for an expert to answer this question at MandrakeExpert.com. The response I got was totally useless some guy that clearly didn't read my post clearly simply told me to turn off my firewall and then told me how to close off all the ports I listed as open via the nmap -v my_ip snapshot prior to this debacle...
Trust me I'll never use a GUI app in Linux again (I've already learned the hard way that RPM's were the brain child of Lucifer...) If anyone out there knows anything about how the specifics of what the 'Tiny Firewall' app does, I would highly appreciate your input relating to my problem Thank you > Ben Nicolas wrote: >> >> Thanks for replying Richard, >> >> The link you gave me basically told me it could connect to every port >> that Nmap could except 3306 which is where MySQL is listening. That >> might explain why Scoop isn't working but I still don't get it because >> apache should be connecting to MySQL locally via sockets not >> externally via TCP which is why the link you gave me failed and >> running nmap locally worked. Like I mentioned below I double checked >> that both my mysql.sock file and the dir it lives in both have 777 >> permissions. My problem is that my Win2K client is still not able to >> use my MDK server as a gateway to the internet. After I used the 'Tiny >> Firewall' application it did something that prevents my server from >> acting like a gateway and prevents access to the 3306 port MySQL is >> listening on. I was hoping one of the experts in this forum would be >> able to tell me exactly what the 'Tiny Firewall' GUI does so that I >> could back out all of the changes it's made and use my network >> again... >> >> >> what nmap -v my_ip says is open post-debacle: >> >> (this is basically what I want) >> >> 21/tcp open ftp >> >> 22/tcp open ssh >> >> 25/tcp open smtp >> >> 53/tcp open domain >> >> 80/tcp open http >> >> 139/tcp open netbios-ssn >> >> 3128/tcp open squid-http >> >> 3306/tcp open mysql >> >> 6000/tcp open X11 >> >> >> >> > > Apache will connect via unix sockets, and, if MySQL is on the same box > as Apache, it will not be using TCP. It seems "Tiny Firewalls" is your > culprit but you already know this. That is why I do not like that kind > of shit. You are better off writing your own rules. Can you just > un-install that crap? You don't really need an expert. You need someone > that has used that "Tiny Firewalls" stuff. > > My question is why do you want all those ports open. Do you mean to > say, for example, that you want to leave port 139, 6000 open? > > > -- > J. Craig Woods > UNIX/NT SA > > -Art is the illusion of spontaneity-
""
Description: Binary data
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
