Re: [Sheflug] Security

[Craig Andrews <nospam [at] fishbot.org.uk>]

> > 113 - Ident
> 
>  If you look at /etc/inetd.conf you'll probably find that you have the
> services shell and login running up at around port 500, either the
> ShieldsUP page didn't scan this high (probably did) or they responded as
> a closed port.

I have been through inetd.conf and removed many useless services. I have
also configured ssh instead of telnet.

>  I usually find that ports and/or my whole machine is only reported as
> 'stealth' if I'm denying packets to ports with ipchains.
>  Not sure what would happen if I rejected instead (deny drops packets
> altogether, reject sends back some information telling the remote
> machine, sorry, your connection was rejected) 

This is correct. Closed is only reported if the returned response is 'port
closed'. If nothing is returned, stealth is reported (the other
alternative is the machine not being connected, but seeing as how you have
to be to run the test at all, it most likely means that the packet was
dropped)

>  I've just finished setting up a machine as a packet filter/router. If
> you need a hand, gimme a shout.
> 

SHOUT!! I only want a simple one, for a dial-up machine. I want it for
experiment rather than use (I can't think of anything my machine does/has
that any (h|cr)acker would want, and anyway, I'm not usually connected for
more than an hour at a time, and I use dynamic IP, so they'd have to be
quick)

cheers

Craig


---------------------------------------------------------------------
Sheffield Linux User's Group - http://www.sheflug.co.uk
To unsubscribe from this list send mail to
- <sheflug-request [at] vuw.ac.nz> - with the word 
 "unsubscribe" in the body of the message. 

  GNU the choice of a complete generation.