-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Don't sell portsentry and its tie to iptables short. I use them religiously and never see problems (and I am not covered by a firewall - and I run chkrootkit as a cronjob as well).
If portsentry is setup properly and up-to-date, then it is not going to be an open relay (Yours isn't an open relay as others have indicated. Rather, your system was likely compromised and mail sent as a "local" user). If someone is going to hack into your system, they are going to do it via some other route, not via port 25 and postfix. This is where portsentry and iptables comes in. They watch over (and cover) the ports that an attacker is likely to try to gain entry through, and warns you and blocks them. For grins and giggles, I usually run a konsole, log in as superuser, and then run "tail -f /var/log/syslog" and watch all the portsentry and iptables responses. Lots of worms doing scans, a few port scans, but never an actual attempt to login. Perhaps most times, an attacker is likely to scan you first to identify your system and find open ports. Portsentry detects this and uses iptables to shut them down. On Saturday 08 November 2003 12:46 pm, et wrote: > On Saturday 08 November 2003 05:41 pm, dfox wrote: > > Apparently I cannot send mail with my postfix on localhost to the > > network. > > > > Previously this was working fine and I don't see any changes made to my > > postfix configuration files. [...] > first, since you must not have seen the pounds of answers you got to this, > were you running squid? this seemed to be a user on your system, and not > a postfix open relay. have you run chkrootkit? [...] > > At the moment, My box is better secured thanks to portsentry (why isn't > > this program in mandrake???? I could not urpmi it, but I did find it > > through rpmfind.org and the source rpm built and installed fine. [...] - -- Faith is the very antithesis of reason, injudiciousness a critical component of spiritual devotion. - --Krakauer -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) iD8DBQE/rUrBb1CLurEA6xURAnjwAJ9HrwdMGu9vhrwhRGPuGWHIgJrQhgCgyTT/ tAlbTcFrBb1V111VcxdY42Y= =lE+U -----END PGP SIGNATURE-----
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
