Re: Listening Ports

To: debian security list <debian-security@lists.debian.org>
Subject: Re: Listening Ports
From: Jeff Coppock <jcoppock1@home.com>
Date: Mon, 10 Sep 2001 01:02:20 -0700
Message-id: <[🔎] 20010910010219.A18744@nortelnetworks.com>
Mail-followup-to: debian security list <debian-security@lists.debian.org>
In-reply-to: <[🔎] 20010910024559.A408@nepomuk.matrix.uni-duisburg.de>; from pschulte@uni-duisburg.de on Mon, Sep 10, 2001 at 02:45:59AM +0200
References: <[🔎] 20010909151125.A18186@nortelnetworks.com> <[🔎] Pine.OSF.4.30.0109101000520.7750-100000@student.uq.edu.au> <[🔎] 20010910024559.A408@nepomuk.matrix.uni-duisburg.de>

Philipp Schulte, 2001-Sep-10 02:45 +0200:
> On Mon, Sep 10, 2001 at 10:02:12AM +1000, Roger Keays wrote: 
> 
> > You want to check out ipchains. It is a packet filter which you can use to
> > reject traffic based on protocol (tcp, udp, icmp), interface,
> > source/destination address and port numbers.
> 
> Jeffs idea to control with interfaces a service binds to is much
> better than to let all services listen on all interfaces and restrict
> them with ipchains.
> KISS
> Phil
> 

I already use iptables, and can accomplish the blocking that way,
I just wanted to see if there was a way to keep the port from
binding to an interface to start with.  

So, I'll continue with iptables for now.

thanks,
jc

-- 

Jeff Coppock		Nortel Networks
Systems Engineer	http://nortelnetworks.com
Major Accts.		Santa Clara, CA

Reply to:

Follow-Ups:
- Re: Listening Ports
  - From: Javier Fernández-Sanguino Peña <jfs@computer.org>

References:
- Listening Ports
  - From: Jeff Coppock <jcoppock1@home.com>
- Re: Listening Ports
  - From: Roger Keays <s354157@student.uq.edu.au>
- Re: Listening Ports
  - From: Philipp Schulte <pschulte@uni-duisburg.de>

Prev by Date: Re: Virtual Networking between Debian and Microsoft Windows systems
Next by Date: SSH install in Woody
Previous by thread: Re: Listening Ports
Next by thread: Re: Listening Ports
Index(es):
- Date
- Thread