Jonathon Coombes <[EMAIL PROTECTED]> wrote:
>>
How about xinetd?
<<
Good point - I thought of it and then got distracted.
>>
I know iptables is still relatively new, but it addresses SNAT and DNAT
(source and destination)
as well as MASQUERADING. This maybe the first cross-over to the iptables
rules.
<<
Yup. I haven't done any serious work with iptables, so I'm hoping for some
suggestions here. . .
>>
In 3.4.2, are you looking at port forwarding, or more of a load
balancing issue?
I would assume that its load balancing based on the plural of servers.
This task may need to be reworded for better understanding.
<<
I assumed that it was port redirection on the same host, e.g. the way you
can configure ipchains to redirect outgoing datagrams addressed to TCP port
80 to go to squid on the firewall, thereby implementing transparent
proxying. It's not clear what is meant here. Port forwarding would require
the ip_port_fw module. . .
>>
The appears to be based on wu-ftp configuration.
<<
It seems to be a "de-facto standard" of sorts. Once you start adding in
Pro-FTPD, etc. where do you stop?
>>
Also look at other forms of root "denial" including:
/etc/nologin
/etc/securetty
or were these included in LPIC I (I cant remember?)
<<
I'll check. At first glance, I'd assume those should be Level 1.
Best,
--- Les [http://www.lesbell.com.au]
--
This message was sent from the lpi-examdev mailing list.
Send `unsubscribe lpi-examdev' in the subject to [EMAIL PROTECTED]
to leave the list.
