[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

RE: attacks

After seeing my reply on the list, I realized I didn't make
a rather important point:  you wouldn't have to block 0-19
explicitly, if your firewall uses a default policy of DROP
(or REJECT) on all INPUT.

This is probably the better way to go:  deny everything,
and only allow what you need to get through.  This could
even be extended to include FORWARD and OUTPUT if you're
particularly concerned.

Jeff Bonner

To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to: