Hi,
So far, my machine hadn't been protected, since it wasn't online since I've
upgraded to 2.2, but now that I got my ISDN setup working, I would like to
protect my machine from bored script kiddies. After seeing the logs on the
firewall at work, with an avarage of 1-2 crack attempts/day, I got
UF Assuming I don't want to mess with firewall rules, will disabling inetd be
UF enough? I can live without local rlogin/telnet/ftp services.
I'd advise also looking what ports your system is listening and disable
incoming traffic from outside to those of them which you aren't need (like
xfs or
I'd advise also looking what ports your system is listening and disable
incoming traffic from outside to those of them which you aren't need (like
xfs or X ports - if you don't want outside people to connect to your X).
will hosts.deny will do the job?
i have the same situation with my
R incoming traffic from outside to those of them which you aren't
R need (like xfs or X ports - if you don't want outside people to
R connect to your X).
R
R will hosts.deny will do the job? i have the same situation with my
R machine, i masked the whole world in host.deny.
Part of it. Better
On Sun, 19 Sep 1999, Stanislav Malyshev a.k.a Frodo wrote:
Part of it. Better solution would be to use firewalling (ipchains) or even
external firwealling (like, router rules), if you are sure you can handle
this. If you employ both methods, you are just protected better.
for the casual
I would like to use Udi's question to point out a security extension
for Linux kernels (2.2.x and 2.0.x) that offers some interesting features
such as restricted Linx and FIFOs in /tmp, non-executable
user stack area and more. The addon can be found at:
http://www.openwall.com/linux/
Yosi
So
