On Sat, Apr 27, 2002, Eliran wrote about "Re: Unknown Ports": > On Sat, Apr 27, 2002 at 12:17:12PM +0300, Nadav Har'El wrote: > > Here's a simple rule (untested, so please test it) not allowing anything > > from ppp0 (assuming you connect externally with a modem) to connect to these > > ports: > > ipchains -A input -i ppp0 --dport 515 -j DENY -l > > ipchains -A input -i ppp0 --dport 6000:6063 -j DENY -l > > ipchains -A input -i ppp0 --dport 113 -j DENY -l > > ipchains: can only specify ports for icmp, tcp or udp > Try `ipchains -h' or 'ipchains --help' for more information.
Sorry, I said I didn't test this... This should be: ipchains -A input -i ppp0 -p TCP --dport 515 -j DENY -l ipchains -A input -i ppp0 -p TCP --dport 6000:6063 -j DENY -l ipchains -A input -i ppp0 -p TCP --dport 113 -j DENY -l > > Are you sure you need port 25 open? Why? Are you trying to run a mail > > *server* on your machine? > > I know sendmail is problematic, I searched bugtraq and packetstorm for >exploits/holes/bugs > in my current sendmail 8.11.2-14 I didn't say sendmail is problematic. What I was wonders is why you are running a mail server on your machine at all. It's not something that is is necessary in a modem-connected home machine (you didn't tell us what kind of machine you're trying to configure). > So how do I block this the X port or just not LISTENing ? You can block it with the above ipchains rule. I don't know how to just cause it to stop listening... -- Nadav Har'El | Saturday, Apr 27 2002, 15 Iyyar 5762 [EMAIL PROTECTED] |----------------------------------------- Phone: +972-53-245868, ICQ 13349191 |My password is my dog's name. His name is http://nadav.harel.org.il |a#j!4@h, but I change it every month. ================================================================= To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
