Quoting Kevin Saenz <[EMAIL PROTECTED]>: > Probably I am a little too paranoid, I just don't want anyone > to logon to the box at all. My theory is if there are no services > open then people cannot log on to the box. My firewall is just there > to forward and filter packets. I agree with you with the power of > sshd. I just believe that if someone wants to get in then there is > no way of stopping them. If there is no port for them to logon to > then how can they gain access unless they are a local user? > Yes I could use IPtables to filter the access to specific addresses > and ports. I just wanted to ensure that my box was a tight as you > could > get it.
I guess a little too paranoid indeed. I couldn't live without sshd, since every machine I've ever installed is completely headless. However if I couldn't have sshd, I'd be just as happy to tweak the kernel and hook up a serial cable to be a console from another machine with has a terminal client and/or old wyse terminal :) -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
