After a long time of waiting I got my adsl yesterday... ;-) So now I have to take a second look at my security and would like a little help with setting up my security.ini - if one of you got a a few minutes for me...
My server will be acting as a proxy-, mail- and wwwserver for my locale network. I dont use dhcp-, dns-, ftp-, telnet- and tftpserver so they have not been enabled. Beside that I want to browse my wwwserver and use webmail from internet. In proxy- and dnsaccept I have written: 169.254* for my locale network. Do I have to add more or is this all I need? Part of my security.ini: [restrict] /secure = billy-bob anonymous # uri-to-restrict* = IP address(s) to restrict to [iprestrict] # *IP-or-DNS-to-deny* = url-to-redirect-to [deny] # Network HTTP Server Accept (IP addresses) [httpaccept] * = Allow all clients # Network FTP Server Accept (IP addresses) [ftpaccept] * = Allow all clients # Network Mail Server Accept (IP addresses) [mailaccept] * = Allow all clients # Network HTTP Server Accept (IP addresses) [proxyaccept] 169.254* = Hjemmenet [dnsaccept] 169.254* = Hjemmenet [httpdeny] # Network FTP Server Deny (IP addresses) [ftpdeny] # Network Mail Server Deny (IP addresses) [maildeny] # Network Proxy Server Deny (IP addresses) [proxydeny] # Network DNS Server Deny (IP addresses) [dnsdeny] # HTTP Filter processing # Deny access to any hosts in the following list. # # *host* = Comment for logging -------------------------------------------------------------------------------- For unsubscription of this list send an email to [EMAIL PROTECTED] with email data containing unsubscribe emailadd sambar
