On Tue, 2002-11-12 at 18:12, Marc wrote: > Hi, > > I currently have Installed Mandrake 9.0 and pureftp and apache up and > running. > Is it possible that customers can connect to my site while my ports are > stealthed (as in not detectable by portscans?). > > My internet connection dials out via a 4-ports-lanswitch and an ADSL router, > and all traffic for port 80 and 21 are routed to the correct Ip adress on my > LAN. Still I wonder how save this is. Even though I am reasonably secure > (router blocks DOS attacks and has firewall as well), I want some extra > security. Especially with the many known security issues for port 80 and 21. > > How can I tighten up security, or should I just choose another port number > for the 2 services currenly open to the internet? > > Regards, > Marc > No, you need these ports open if you want to run those services, and changing port numbers seems to be pretty much discredited as a means of achieving "security by obscurity". The only answer is to ensure you stay up to date with security updates, check your logs etc. Script kiddies are not going to cause you any major issues if you do this. All the hacks I have seen documented on this and other lists so far have been as a result of not updating.
HTH Brian
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
