[ale] Comments sought on port scan
John Mills
john at mills-atl.com
Tue Dec 12 22:36:18 EST 2000
On 12 Dec 2000, Fletch wrote:
>
> Best thing to do if you've got ipchains compiled into your
> kernel (which you probably should on a box that's connected to the
> 'net at large) is to simply drop any packets to these ports on the
> outside interface. The book `Building Linux and OpenBSD Firewalls' is
> a good reference for ipchains, and they've got sample scripts on the
> companion web site (the url of which eludes me since the book is
> sitting downstairs, but if you google for the title I'm sure it'll
> turn up).
I just rebuilt my 2.2.17 kernel with packet filtering configured, so it
will be quite easy to do it again with all access controls selected. I
already bought Zwicky, et al., _Building InterNet Firewalls_, and am
reading away. Bob Toxen's book is also on order.
Thanks.
--
Regards -
John Mills
--
To unsubscribe: mail majordomo at ale.org with "unsubscribe ale" in message body.
More information about the Ale
mailing list