Re: firewall (fwd)
On Sun, Oct 01, 2000 at 01:25:39PM -0400, Allan M. Wind wrote:
> MediaOne (now AT&T) probes for open relays on port 25 frequently.
In Silicon Valley, ATT@HOME cable poke NNTP port from 2 servers
Their hostname was like authorized-scan.athome.net or something.
(I got linuxconf, http, ftp, sunrpc port scanned but these seems to
be from script kiddie.)
I have closed most server port (1-1023) by ipchains by modifying
ipmasq scripts. (It's on my web page as tar.gz)
I think for home machines, firewall by ipchains are good enough and
quite effective both for ISP relation and script kiddie protection.
+ Osamu Aoki <email@example.com>, GnuPG-key: 1024D/D5DE453D +
+ Fingerprint: 814E BD64 3288 40E7 E88E 3D92 C3F8 EA94 D5DE 453D +
+ === http://www.aokiconsulting.com ======= Cupertino, CA USA === +