Gentoo Logo

About | Projects | Docs | Forums | Lists | Bugs | Get Gentoo! | Support | Planet | Wiki

Gentoo Spaceship
Note: Due to technical difficulties, the Archives are currently not up to date. GMANE provides an alternative service for most mailing lists.
c.f. bug 424647
List Archive: gentoo-security
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Headers:
To: gentoo-security@g.o
From: mickey@...
Subject: Re: firewall suggestions?
Date: Thu, 8 Jan 2004 09:34:49 -0700 
Quoting "Thomas T. Veldhouse" <veldy@...>:
> > In "closing" ports, one has the option - nay one is recommended - to
> > use the "DROP" target which has the desired effect of which you speak.
> 
> It is probably a very good idea to actually REJECT ident (113/tcp) lookups
> rather than drop them.  It is very common to have reverse ident lookups do
> to your activity, and a DROP will cause a delay that is not needed.  This
> particular item is normal and not a security concern in and of itself.  As a
> matter of fact, it is so common, it is good to not even log it.

Good advice.  I will heed it.

So, accept 113/tcp and ICMP packets.  Anything else?  Oh, a judicious use of
"--limit" may also be a good idea.

dreamwolf

--
gentoo-security@g.o mailing list
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Previous by thread:
Re: firewall suggestions?
Next by thread:
RE: firewall suggestions?
Previous by date:
Re: firewall suggestions?
Next by date:
Re: OT: firewall suggestions?


Updated Jun 17, 2009

Summary: Archive of the gentoo-security mailing list.

Donate to support our development efforts.

Copyright 2001-2013 Gentoo Foundation, Inc. Questions, Comments? Contact us.