Re: Tightening security

To: Andrei Ivanov <c680789@showme.missouri.edu>
Cc: Debian user list <debian-user@lists.debian.org>
Subject: Re: Tightening security
From: meridian <me@tha.net>
Date: Sat, 28 Aug 1999 15:38:41 +1000 (EST)
Message-id: <[🔎] Pine.LNX.4.03.9908281536380.1856-100000@arakasi.cafelink.com>
In-reply-to: <[🔎] Pine.A41.4.10.9908261604530.6952-100000@sp2n21.missouri.edu>

The best solution would be using ip filters such as ipchains to block the
port from outside users, so no conections at all can be made to the
xserver port. You might also check Xaccess and ensure only ip addresses
that need access to port 6000 have it, which is often only the local
machine

 
meridian
 me@NOSPAM.tha.net

all that busts well ends loosely.

On Thu, 26 Aug 1999, Andrei Ivanov wrote:

> Hi all. I got a question about security.
> I'm currently running libc2.0.7u, with 2.2.11 kernel, and apache.
> To protect from possible attacks I minimized the number of ports open and
> put up a portsentry. However, when I nmap myself, I see a port 6000
> listening for connections. I believe that is X.
>  Is there any security risk in that, and how would I be abel to protect
> it, because portsentry does not bind to it so it can be protected.
> TIA,
>   Andrew
> 
> ---------------------------------------------------------------------------
>  Andrei S. Ivanov                  
>  Scorpio@hushmail.com
>  c680789@showme.missouri.edu
>  UIN 12402354                      
>  http://scorpio.myip.org    <--All the pages bundled together.
> ---------------------------------------------------------------------------
> 
> 
> -- 
> Unsubscribe?  mail -s unsubscribe debian-user-request@lists.debian.org < /dev/null
>

Reply to:

References:
- Tightening security
  - From: Andrei Ivanov <c680789@showme.missouri.edu>

Prev by Date: Re: make-kpkg and 2.2.12
Next by Date: Please help a poor gaijin!
Previous by thread: Tightening security
Next by thread: make-kpkg and 2.2.12
Index(es):
- Date
- Thread