Ipfilter rules,
Yannis Mitsos
gmitsos at telecom.ntua.gr
Tue May 8 18:59:01 EEST 2001
Hallo,
Mia erwthsh sextika me security kai IP filters.
H pagia taktikh (apo oso 3erw) gia ta rules tou ipfilter einai na
kleineis oles ti portes kai meta na anoigeis aytes pou pragmatika
xreiazesai.
To problhma einai otan (blockareis incoming kinhsh) orismena services
anoigoun sockets se megalyteres portes (>1024) kai plon milane ekei.
Profanws oi portes aytes dialegontai random kai den mporeis na 8ewrhseis
ek tou asfalous oti einai se ena range to opoio kai afhneis anoixto.
Paradeigma to DNS service. Akouei sthn porta 53 kai meta o server paei
opou 8elei..
Se aytes tis periptwseis ti ginetai ?
Fantazomai oti h lysh na mlokareis oles tis portes katw apo 1024 na
afhseis ANOIXTES oles tis alles kai na anoi3eis epilektika aytes pou
8es, den prepei na einai kai h asfalesterh!!
Yannis
More information about the Linux-greek-users
mailing list