-
Von: Jérémie Marguerie [mailto:jere...@marguerie.org]
Gesendet: Montag, 9. Dezember 2013 19:17
An: Hey, Lukas (KRZ)
Cc: Jordon Bedwell; Debian
Betreff: Re: End-user laptop firewall available?
On Mon, Dec 9, 2013 at 1:10 AM, Hey, Lukas (KRZ) l@krz.de wrote:
I have a /64 network at home. Do you
wirklich ausgedruckt werden muss!
-Ursprüngliche Nachricht-
Von: Jérémie Marguerie [mailto:jere...@marguerie.org]
Gesendet: Sonntag, 8. Dezember 2013 20:03
An: Riku Valli
Cc: Jordon Bedwell; Debian
Betreff: Re: End-user laptop firewall available?
On Sun, Dec 8, 2013 at 9:56 AM, Riku
wirklich ausgedruckt werden muss!
-Ursprüngliche Nachricht-
Von: envyge...@gmail.com [mailto:envyge...@gmail.com] Im Auftrag von Jordon
Bedwell
Gesendet: Montag, 9. Dezember 2013 09:25
An: Hey, Lukas (KRZ)
Cc: Debian
Betreff: Re: End-user laptop firewall available?
On Mon, Dec 9, 2013 at 2:12
On 9 December 2013 09:12, Hey, Lukas (KRZ) l@krz.de wrote:
C'mon guys,
you spend way too much time discussing packet filtering rules and programs
for a
machine which is hooked up via modem. Of course you can avoid things that
might happen when dialed up or connected to some public
On Sat, 2013-12-07 at 10:55 -0600, Richard Owlett wrote:
I chose phrasing of subject line to emphasize some peculiarities
of my needs.
End-user emphasizes:
- I am *NOT* an expert
- my system is never intended to be a server
Without any services running, you won't really have any
On Sat, 2013-12-07 at 10:55 -0600, Richard Owlett wrote:
I chose phrasing of subject line to emphasize some peculiarities
of my needs.
End-user emphasizes:
- I am *NOT* an expert
- my system is never intended to be a server
Without any services running, you won't really have any
On Mon, Dec 9, 2013 at 1:10 AM, Hey, Lukas (KRZ) l@krz.de wrote:
I have a /64 network at home. Do you want to scan 2^64 IPs
(18,446,744,073,709,551,616) to get the IP currently used by the laptop which
is changed via the IPv6 privacy extension? The only machine having a fixed
public
On Mon, Dec 09, 2013 at 09:41:34AM -0700, Jason Fergus wrote:
On Sat, 2013-12-07 at 10:55 -0600, Richard Owlett wrote:
I chose phrasing of subject line to emphasize some peculiarities
of my needs.
End-user emphasizes:
- I am *NOT* an expert
- my system is never intended to
On Mon, 2013-12-09 at 20:16 +0100, Javier Fernández-Sanguino Peña wrote:
On Mon, Dec 09, 2013 at 09:41:34AM -0700, Jason Fergus wrote:
On Sat, 2013-12-07 at 10:55 -0600, Richard Owlett wrote:
I chose phrasing of subject line to emphasize some peculiarities
of my needs.
On 12/08/2013 04:13 AM, Jérémie Marguerie wrote:
On Sat, Dec 7, 2013 at 4:03 PM, Anatoli Lichii anat...@lanixx.com wrote:
I use ufw/gufw
A simple firewall configuration is to allow what goes out and only
accept what comes in if it was initiated from your laptop
(established
connection).
The answer is: None.
May I suggest a netstat -tulp to see listening services on this laptop ?
While outgoing connections can be discussed, incoming *should* be filtered.
Here some basic configuration for iptables :
*filter
:INPUT DROP [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT
Le 08/12/2013 11:34, Bastian Blank a écrit :
On Sat, Dec 07, 2013 at 10:55:30AM -0600, Richard Owlett wrote:
Any help/direction appreciated.
The answer is: None. If you don't have anything listen on the network,
nothing can be accessed anyway.
Bastian
What about the possibility of a
On Sun, Dec 08, 2013 at 01:36:36PM +0100, Frédéric CORNU wrote:
What about the possibility of a malicious piece of software beeing
installed and starting listening to incomming connections without the
knownledge of the system user ?
What about the possibility of a malicious piece of software
Bastian Blank:
On Sat, Dec 07, 2013 at 10:55:30AM -0600, Richard Owlett wrote:
Any help/direction appreciated.
The answer is: None. If you don't have anything listen on the network,
nothing can be accessed anyway.
Does Debian still come with open ports in a default installation?
--
To
Frédéric CORNU:
Le 08/12/2013 11:34, Bastian Blank a écrit :
On Sat, Dec 07, 2013 at 10:55:30AM -0600, Richard Owlett wrote:
Any help/direction appreciated.
The answer is: None. If you don't have anything listen on the network,
nothing can be accessed anyway.
Bastian
What about the
On Sat, Dec 07, 2013 at 10:55:30AM -0600, Richard Owlett wrote:
I chose phrasing of subject line to emphasize some peculiarities of
my needs.
End-user emphasizes:
- I am *NOT* an expert
- my system is never intended to be a server
(...)
Based on this I suggest you use a simple firewall
On 12/08/2013 02:44 PM, Volker Birk wrote:
On Sun, Dec 08, 2013 at 01:36:36PM +0100, Frédéric CORNU wrote:
What about the possibility of a malicious piece of software
beeing installed and starting listening to incomming connections
without the knownledge of the system user ?
What about
On 12/08/2013 07:05 PM, Jordon Bedwell wrote:
On Sun, Dec 8, 2013 at 11:01 AM, Riku Valli riku.va...@vallit.fi wrote:
On 12/08/2013 02:44 PM, Volker Birk wrote:
On Sun, Dec 08, 2013 at 01:36:36PM +0100, Frédéric CORNU wrote:
What about the possibility of a malicious piece of software
beeing
babataz baba...@free.fr writes:
Here some basic configuration for iptables :
If you want to configure these manually you need to also take care of
ip6tables. Debian listens on a link-local ipv6 address by default. It
can be accessed by anyone in the local network.
--
To UNSUBSCRIBE, email to
On Sun, Dec 8, 2013 at 9:56 AM, Riku Valli riku.va...@vallit.fi wrote:
Thats true, but if we speaking about firewall rules. Every rule where
source, destination or ports are any means at rule and firewall is most
in cases a useless and this is true most in time a laptop/desktop.
When somebody
I chose phrasing of subject line to emphasize some peculiarities
of my needs.
End-user emphasizes:
- I am *NOT* an expert
- my system is never intended to be a server
Laptop indicates:
- small standalone system intended to operate primarily
*WITHOUT* any networking
When connected to
On Sat, Dec 7, 2013 at 4:03 PM, Anatoli Lichii anat...@lanixx.com wrote:
I use ufw/gufw
A simple firewall configuration is to allow what goes out and only
accept what comes in if it was initiated from your laptop
(established
connection).
--
Jérémie MARGUERIE
--
To UNSUBSCRIBE, email to
22 matches
Mail list logo