On Sat, Nov 13, 2004 at 09:12:37PM +0000, Jonathon McKitrick wrote: > > I've been using one for some time, but now that I have a mini network, it > has become a bit of a hassle updating the rules. > > If I disable all services but ssh, stay STABLE, and do not have a broadband > connection, what danger is there?
Well, there is a possible DoS attack as your system gets hit with a load of TCP SYN packets which your system will respond with ICMP errors or SYN-ACK depending on the port. A firewall could drop all incoming packets not to TCP port 22 or part of an outgoing connection plus block incoming pings. And if you move ssh to, say, port 1243, there's very little chance anyone might even find your machine if they can't see ur outgoing traffic. Oh, and don't ever think your dial-up connection reduces the chance that you'll be attacked. You'd be a great target to use as a decoy when they decide to take down the FBI going through five cracked machines to hide their tracks. > > jm > -- > _______________________________________________ > [EMAIL PROTECTED] mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" -- I sense much NT in you. NT leads to Bluescreen. Bluescreen leads to downtime. Downtime leads to suffering. NT is the path to the darkside. Powerful Unix is. Public Key: ftp://ftp.tallye.com/pub/lorenl_pubkey.asc Fingerprint: B3B9 D669 69C9 09EC 1BCD 835A FAF3 7A46 E4A3 280C _______________________________________________ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
