On Dec 8, 2007 8:35 AM, Grant <[EMAIL PROTECTED]> wrote: > I have shorewall set up on my router but I haven't set up anything > security-wise for my laptop which normally sits behind the router. > What should I be setting up on the laptop in preparation for traveling > and connecting via a foreign network or even directly to the Internet? > I don't run sshd on the laptop. I would think shorewall, but am I > forgetting anything? >
At the very least I'd do the following with iptables: iptables -P INPUT DROP iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT iptables -A FORWARD -i eth0 -m state --state RELATED,ESTABLISHED -j ACCEPT iptables -A OUTPUT -m state --state NEW,RELATED,ESTABLISHED -j ACCEPT This will make sure that there are no incoming connects except those that you initiated. > > # rc-update -s > alsasound | boot > bootmisc | boot > checkfs | boot > checkroot | boot > clock | boot > consolefont | boot > hald | default > hostname | boot > keymaps | boot > local | default nonetwork > localmount | boot > metalog | default > modules | boot > net.eth0 | default > net.lo | boot > netmount | default > ntp-client | default > ntpd | default > rmnologin | boot > urandom | boot > vixie-cron | default > xdm | default > xfs | default > > - Grant > -- > [EMAIL PROTECTED] mailing list > >
