compgeek13 at gmail.com
Sat Feb 10 14:43:13 EST 2007
ohkay, here's my firehol script...
interface eth0 internet src not "$UNROUTABLE_IPS"
server ftp accept
server ssh accept
#server telnet not src 192.168.1.1/24 drop
server smtp accept
server http accept user apache
server pop3 accept
client all accept user "tyler root"
client ftp accept
client ssh accept
client telnet accept
client smtp accept
client pop3 accept
everything is getting dropped... any idea?
Also, I was wondering:
is there a way to do soemthing like client telnet src 192.168.1.1/24 accept,
and then do client telnet drop?
Unlimited horizons head coder.
check out our website:
msn: compgeek134 at hotmail.com
----- Original Message -----
From: Lorenzo Taylor <lorenzo at taylor.homelinux.net>
To: Speakup is a screen review system for Linux. <speakup at braille.uwo.ca>
Sent: Saturday, February 10, 2007 10:24 AM
Subject: Re: hacking attempts
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> I particularly like a firewall script called FireHOL. By default it
> blocks everything and you just open what you want. And the scripting
> language that builds the firewall rules is about the easiest to
> understand of anything I've ever seen. It's available at
> http://firehol.sourceforge.net, and some distros also have packages
> prebuilt for it. The homepage gives you lots of examples of usage for
> different configurations.
> - --
> I've always found anomalies to be very relaxing. It's a curse.
> - --Jadzia Dax: Star Trek Deep Space Nine (The Assignment)
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.3 (GNU/Linux)
> -----END PGP SIGNATURE-----
> Speakup mailing list
> Speakup at braille.uwo.ca
More information about the Speakup