Re: laptop protection in an office network
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Sun, Aug 30, 2015 at 09:25:23AM +0100, Joe wrote:
> On Sun, 30 Aug 2015 09:47:56 +0200
> <tomas@tuxteam.de> wrote:
>
> > -----BEGIN PGP SIGNED MESSAGE-----
> > Hash: SHA1
> >
> > On Sat, Aug 29, 2015 at 11:28:10PM +0100, Brian wrote:
>
>
> > >
> > > Its only listening on localhost. What's the problem?
> >
> > You're right, I missed that.
> >
>
> Which is why I suggested nmap. When you've made absolutely sure you've
> read the netstat listing properly, you then need to look at the
> application configuration and the tcpwrappers files to see what other
> restrictions may be applied to connections, and then check the
> iptables rules to see what's there.
[snip]
Agreed. I wouldn't dismiss nmap -- on the contrary, it's *the* tool in
a security toolbox. Use both. Each has its strengths (netstat tells you
which process is behin a port, which is handy too).
- -- t
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
iEYEARECAAYFAlXivv0ACgkQBcgs9XrR2kaZjACfd8Ci457e/lVIIrcXCBhQHw3A
Q5wAnj2kVo4+s4vgLLtlzoFwElSk7FOR
=cO5D
-----END PGP SIGNATURE-----
Reply to: