Re: [tlug] Stopping Spam and viruses

[Scott Robbins <scottro@example.com>]

On Thu, Aug 29, 2002 at 10:40:31AM +0900, Jonathan Byrne wrote:
> 
> On 8/29/2002, "Graeme Jensen" <magic@example.com> wrote:
> 
If you're totally unfamiliar with ipchains (Red Hat's default
> firewalling) Red Hat includes a text-mode graphics program called lokkit that
> will get you started.
> 
> >did choose normal for firewall setup during installation of Red Hat 7.2.
> 
> The settings I've always seen in RH are high, medium, and none.  What does
> "normal" mean?  If it means none, that would be bad.


No, that's not the case.  None would be the same as if you did ipchains
-F (for those unfamiliar with it, that means flushing your ipchains
rules, leave three rules--input, ACCEPT, output ACCEPT forward
ACCEPT--in other words, nothing)

Medium is ACCEPT as the final rule, but blocking 0-1023, 6000:6009, 2049 and
7100. That's a common question on one of these newbie lists I
frequent--people don't realize why ssh, apache, etc isn't working.
> 
> 
> WRT Win 98, there are some firewall solutions you can buy, but none of them
> get much respect. That's partly because they suck, and partly because it's not
> unusual for people  using them to send "hacking reports" to their ISP, showing
> they are being "attacked" by their localhost and demanding the ISP do
> something about it :-p
> 
> However, they are all that's available if you want to run localhost
> firewalling on a Win9x machine.  A better solution is to have a *nix box
> standing in front of it and providing really strict firewalling for it.

XP now has a builtin firewall.  I forget what it does.  Err, I guess it
blocks stuff.  
> 
>

-- 
Scott

PGP keyID EB3467D6 (1B48 077d 66F6 9DB0 FDC2  A409 FA54 D575 EB34 67D6 )
gpg --keyserver pgp.mit.edu --recv-keys EB3467D6

Attachment: pgp00075.pgp
Description: PGP signature