[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: firewall (fwd)


On Sun, Oct 01, 2000 at 01:25:39PM -0400, Allan M. Wind wrote:

> MediaOne (now AT&T) probes for open relays on port 25 frequently.

In Silicon Valley, ATT@HOME cable poke NNTP port from 2 servers

Their hostname was like authorized-scan.athome.net or something.

  (I got linuxconf, http, ftp, sunrpc port scanned but these seems to 
   be from script kiddie.)

I have closed most server port (1-1023) by ipchains by modifying
ipmasq scripts.  (It's on my web page as tar.gz)

I think for home machines, firewall by ipchains are good enough and
quite effective both for ISP relation and script kiddie protection.

Good luck.

+  Osamu Aoki <debian@aokiconsulting.com>, GnuPG-key: 1024D/D5DE453D  +
+   Fingerprint: 814E BD64 3288 40E7 E88E  3D92 C3F8 EA94 D5DE 453D   +
+   === http://www.aokiconsulting.com ======= Cupertino, CA USA ===   +

Reply to: