[ale] Comments sought on port scan

Tue Dec 12 22:36:18 EST 2000

On 12 Dec 2000, Fletch wrote:

> 
>         Best thing to do if you've got ipchains compiled into your
> kernel (which you probably should on a box that's connected to the
> 'net at large) is to simply drop any packets to these ports on the
> outside interface.  The book `Building Linux and OpenBSD Firewalls' is 
> a good reference for ipchains, and they've got sample scripts on the
> companion web site (the url of which eludes me since the book is
> sitting downstairs, but if you google for the title I'm sure it'll
> turn up).

I just rebuilt my 2.2.17 kernel with packet filtering configured, so it
will be quite easy to do it again with all access controls selected. I
already bought Zwicky, et al., _Building InterNet Firewalls_, and am
reading away. Bob Toxen's book is also on order.

Thanks.

-- 
Regards -
 John Mills

--
To unsubscribe: mail majordomo at ale.org with "unsubscribe ale" in message body.