On Tue, 2017-12-12 at 17:56 -0700, patf wrote: > PS. Looks like I'm going to have to take a different approach to > automating establishment of firewall rules blocking script kiddies > trying to brute-force my system. > Something like this may work for you too:
- I have NO externally visible or accessable ports on my ADSL router, checked against Gibson Labs Shields-up tool. - I retrieve mail from my mailbox at my ISP using getmail, which passes it to Postfix via SA for Dovecot to distribute on my LAP. - This means that all internet sessions are started my my host computers so I never need to accept connections from outside. - everything on my LAN that offers a firewall has it enabled. Martin
