Re: Closing ports...
On Sun, Sep 15, 2002 at 09:43:16PM +0200, Sergio Rodriguez de Guzman Martinez wrote:
> You have configured junkbuster to *work* with the local network. If your
> box receives a connection from other place it will give a "Operation not
> permitted" mesage, but the port is still open to everyone. You can't
> configure it in the /etc/junkbuster/acl (access list). To close the port
> you must use iptables.
Seeing as I'm probably one of the few people who have used junkbuster,
I should point out that you *can* configure junkbuster to only listen
on localhost. Just edit the listen-address line in
> firstname.lastname@example.org (2002-09-15 at 1815.04 +0200):
> > Hello,
> > using debian-testing, I wanted to secure my internet box. First of all,
> > I wanted to close unnecessary ports. I noticed one thing: With netstat,
> > _all_ ports were open to the whole world:
> > Proto Recv-Q Send-Q Local Address Foreign Address
> > State tcp 0 0 *:6565 *:* LISTEN 8078/junkbuster
> > But I have configured junkbuster to listen only to my network:
> > deny 0.0.0.0/0
> > permit 192.168.42.0/24
> > What do I understand wrong here ? TIA !
Adam Olsen, aka Rhamphoryncus