Chances are that if this machine has sat for any length of time
unprotected in the DMZ, it's been hacked already. I'd start by a
disconnect from the external network at the laeast, preferably total
disconnect, then reinstall and harden then place back where it will be
used.
Thanks,
Ron DuFresne
On Thu, 6 Apr 2000, Ryan Reynolds wrote:
> Hello all.
>
> I have a Solaris machine that sits outside the firewalls on our
> network. This machine is mainly used at the console only, and is used
> only for getting an "outside" perspective. I am attempting to lock this
> machine down from any and all remote connections. Thus far I have done
> so for every port/service except 111/sunrpc and 6000/X.
>
> TCP wrappers will not shut down these ports, will they? Does anyone
> have any ideas on the best way, if any, to prevent remote connections to
> these ports without removing sunprc and X11? Any help is greatly
> appreciated.
>
> -Ryan
>
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
"Cutting the space budget really restores my faith in humanity. It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation." -- Johnny Hart
***testing, only testing, and damn good at it too!***
OK, so you're a Ph.D. Just don't touch anything.
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
