Re: Save ports

2007-03-07 Thread Toni Mueller
Hi, On Tue, 06.03.2007 at 12:40:07 +0100, Almir Karic [EMAIL PROTECTED] wrote: On 3/5/07, Toni Mueller [EMAIL PROTECTED] wrote: it depends. My current impression is that if you can get away with having the TCP stack reject packets w/o spending the effort of running it through pf, than that's

Re: Save ports

2007-03-06 Thread Almir Karic
On 3/5/07, Toni Mueller [EMAIL PROTECTED] wrote: Hi, On Thu, 22.02.2007 at 22:36:21 +0100, Joachim Schipper [EMAIL PROTECTED] wrote: Just filtering aggressively using pf works as well, of course. it depends. My current impression is that if you can get away with having the TCP stack reject

Re: Save ports

2007-03-05 Thread Toni Mueller
Hi, On Thu, 22.02.2007 at 22:36:21 +0100, Joachim Schipper [EMAIL PROTECTED] wrote: Just filtering aggressively using pf works as well, of course. it depends. My current impression is that if you can get away with having the TCP stack reject packets w/o spending the effort of running it

Re: Save ports

2007-02-22 Thread Joachim Schipper
On Tue, Feb 20, 2007 at 06:47:41PM -0800, Bray Mailloux wrote: I ran an nmap -sS localhost which output port state service 13/tcp open daytime 22/tcp open ssh 25/tcp open smtp 37/tcp open time 53/tcp open domain 113/tcp

Re: Save ports

2007-02-22 Thread Stuart Henderson
On 2007/02/22 22:36, Joachim Schipper wrote: I must admit to not being aware of what would be running on 53/tcp. netstat is your friend $ fstat | grep tcp.*:53

Re: Save ports

2007-02-21 Thread Markus Lude
On Tue, Feb 20, 2007 at 08:01:19PM -0700, Open Phugu wrote: On 2/20/07, Bray Mailloux [EMAIL PROTECTED] wrote: I ran an nmap -sS localhost which output port state service 13/tcp open daytime 22/tcp open ssh 25/tcp open smtp 37/tcp open

Save ports

2007-02-20 Thread Bray Mailloux
I ran an nmap -sS localhost which output port state service 13/tcp open daytime 22/tcp open ssh 25/tcp open smtp 37/tcp open time 53/tcp open domain 113/tcpopen auth 587/tcpopen submission This BSD box will be

Re: Save ports

2007-02-20 Thread Nick Holland
Bray Mailloux wrote: I ran an nmap -sS localhost which output port state service 13/tcp open daytime 22/tcp open ssh 25/tcp open smtp 37/tcp open time 53/tcp open domain 113/tcpopen auth 587/tcpopen

Re: Save ports

2007-02-20 Thread Open Phugu
Turn off inetd to close 13,37,133. Configure sendmail not to listen on ports 25 and 587, That leaves 22(ssh) and 53(domain). On 2/20/07, Bray Mailloux [EMAIL PROTECTED] wrote: I ran an nmap -sS localhost which output port state service 13/tcp open daytime 22/tcp