Using SAMBA through the TCP wrappers

To: debian-firewall@lists.debian.org
Subject: Using SAMBA through the TCP wrappers
From: Stefan Srdic <linuxbox@telusplanet.net>
Date: Sun, 24 Dec 2000 17:09:57 -0700
Message-id: <3A469055.F253A44@telusplanet.net>

When I installed my system I decided to install the SAMBA server and use
it through the inet super daemon. From what the installation
instructions said, the SAMBA server will remain dormant untill it hears
traffic on the NetBIOS ports.

I installed PortSentry the other night and was testing it over at
www.grc.com, I found that with the SAMBA server running it left my
computer open to NetBIOS attacks.  I know that I could simply add the
following lines to my firewall script to disallow NetBIOS packets
through my external interface (eth0):

/sbin/ipchains -A input -i eth0 -p tcp -s 0.0.0.0/0 137:139 -j REJECT
/sbin/ipchains -A input -i eth0 -p udp -s 0.0.0.0/0 137:139 -j REJECT

This would prevent NetBIOS packets from sneaking through my external
interface. I also want to ensure that the SAMBA server will no longer
listen for NetBIOS packets on my external interface.

How do I configure the inetd.conf file or the HOSTS.* files so that the
SAMBA server will no longer listen for NetBIOS packets on my external
interface?

Stefan

Reply to:

Follow-Ups:
- RE: Using SAMBA through the TCP wrappers
  - From: "Don Laursen" <don@darkphoton.com>

Prev by Date: Re: Debian equivalent of rc.firewall??
Next by Date: RE: Using SAMBA through the TCP wrappers
Previous by thread: Your 20 acres in the West
Next by thread: RE: Using SAMBA through the TCP wrappers
Index(es):
- Date
- Thread