On Fri, 9 Feb 2001, Mgiordano wrote:
> 15000 accounts. @200 virtual web sites. Sorry about that.
what kind of access do they need?
UNIX shell?
telnet or ssh?
ftp?
web?
https?
remote management?
database access?
mail?
smtp?
pop?
imap?
dns?
in and out?
zone transfers?
any proxies?
ftp?
socks5?
transparent or not?
in a nutshell, ask these questions, then you can start to develop your
rules bases around this. personally, i would say deny as much inbound as
possible, keep state on your connections outbound, and force secured
communications.
____________________________
jose nazario [EMAIL PROTECTED]
PGP: 89 B0 81 DA 5B FD 7E 00 99 C3 B2 CD 48 A0 07 80
PGP key ID 0xFD37F4E5 (pgp.mit.edu)
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
