> > Don't run any of these services without suitable firewalling > to prevent > access from outside, except sshd which is fine as long as you're using > the latest openssh. In fact, for a home system, there's probably no > need to have anything but port 22 open to the outside world (and only > if you need remote access). You may need to allow incoming > connections > to ports 1024 and above for outgoing ftp, but if you use a client > capable of passive ftp (ncftp, wget, any web browser), you don't need > to do this.
Another thing I always like to do is change the port services run on to something high and unused. http, ssh, telnet - they can all be run on any port you like really and changing them to something obscure avoids normal bulk scanners and worms... S. :) PLEASE NOTE: This email transmission is confidential and intended solely for the addressee. If you are not the intended addressee, you must not use, disclose or print this transmission and you should delete it from your system. -- SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
