Dear All, I have a red hat 8 linux server running shorewall firewall version 3.0.6 and i have another redhat linux 9 server running as a webserver which has my sql database and also sendmail running
i have a rule allowing only port 80 and port 25 and 110 for accessing the webserver and mails Recently i restarted the server n it refused to boot giving me a error message segmentation fault when the grep command is run and used to hang at bootin i found out that my grep utility was corrupted the size being reduced which is a clear sign that the pc was attacked. Now i would appreciate if you could just let me know how it could be hacked or if i needed to block any other port apart from the above. or do i need to have any IDS OR IPS detection system in addtion to the firewall software. Thnaks and Regards Appreciate ur help regards simon ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
