Re: ipchains firewall rules

To: dyer <phil.dyer@mindspring.com>, debian-user@lists.debian.org
Subject: Re: ipchains firewall rules
From: Ethan Benson <erbenson@alaska.net>
Date: Thu, 20 Jan 2000 12:25:36 +0000
Message-id: <v04220808b4acae463f7c@[192.168.0.1]>
In-reply-to: <[🔎] 3886FBAD.75BB1083@mindspring.com>
References: <v04220800b4ac7fca5281@[192.168.0.1]> <[🔎] 3886FBAD.75BB1083@mindspring.com>

On 20/1/2000 dyer wrote:


Are the deny's perhaps UDP packets?


no, they are tcp, I have not yet tried to do anything about udp packets.

looking closer at the way portmapper seems to do things, it appearsto me that any rpc service that is registered is given a random port,not necessarly privileged. that would make firewalling off statdlockd et al very difficult.

is there any way to mount an nfs share without opening up all theseholes? how much of a risk do they pose? (given they run as root, imless then thrilled with them being open)


Ethan

Reply to:

References:
- ipchains firewall rules
  - From: Ethan Benson <erbenson@alaska.net>
- Re: ipchains firewall rules
  - From: dyer <phil.dyer@mindspring.com>

Prev by Date: Re: don't want x as default startup
Next by Date: Re: S3 Trio3D
Previous by thread: Re: ipchains firewall rules
Next by thread: HELP HELP HELP
Index(es):
- Date
- Thread