SLUG Mailing List Archives - Re: [SLUG] General question Re: Securing Redhat Linux

To: slug@xxxxxxxxxxx
Subject: Re: [SLUG] General question Re: Securing Redhat Linux
From: Steve Downing <steve@xxxxxxxxxxxxx>
Date: Wed Dec 18 08:57:04 2002
Reply-to: steve@xxxxxxxxxxxxx

I asked a similar question to this the other day ( See my post 'Learning 
about security').

Basically I wanted to know: If a firewall explicitly DROP's all new 
connections on the external (ppp0 in my case) interface, how can 
a cracker get access to the sshd/telnetd/httpd/whatever running on 
that firewall machine?  The firewall does allows ESTABLISHED or RELATED 
connections on that inteface though. ( Ala Rusty's quick Firewall 
rules from the HOWTO)

cheers
Steve

At 18 December 2002, Kevin Saenz <kevin@xxxxxxxxxxxxxxx> wrote:
>I never install any servers, especially either
>telnetd or sshd, on my firewall. If I want to make a mod to my firewall
>I have to do it locally.

-- 
"We live in an age of continuous partial attention."
--Ms. Linda Stone, researcher and VP at Microsoft

http://www.helmsdeep.net/capn-k/
Linux | Windows | CAD | Audio Visualisation and more

Messages sorted by: [ date | thread ]
Prev by Date: WAS: Re: [SLUG] General question Re: Securing Redhat Linux IS: question re: sshd
Next by Date: Re: WAS: Re: [SLUG] General question Re: Securing Redhat Linux IS: question re: sshd
Previous by thread: Re: [SLUG] General question Re: Securing Redhat Linux
Next by thread: Re: [SLUG] General question Re: Securing Redhat Linux