[ale] Napster blocking

Robert Hoffman rob at frankenlinux.com
Mon Feb 5 09:12:55 EST 2001


In the tradition of the Bastard Operator from Hell, I use the following rules to block napster for a user who offended root:


/sbin/ipchains -A input -p tcp -s 192.168.2.67/24 -d 0.0.0.0/0 4444 -j DENY
/sbin/ipchains -A input -p tcp -s 192.168.2.67/24 -d 0.0.0.0/0 5555 -j DENY
/sbin/ipchains -A input -p tcp -s 192.168.2.67/24 -d 0.0.0.0/0 6666 -j DENY
/sbin/ipchains -A input -p tcp -s 192.168.2.67/24 -d 0.0.0.0/0 7777 -j DENY
/sbin/ipchains -A input -p tcp -s 192.168.2.67/24 -d 0.0.0.0/0 8888 -j DENY
/sbin/ipchains -A input -p tcp -s 192.168.2.67/24 -d 0.0.0.0/0 6699 -j DENY
/sbin/ipchains -A input -p tcp -s 192.168.2.67/24 -d 0.0.0.0/0 8875 -j DENY 


Changing the source ip to cover your entire subnet should do the trick for every user.

-Rob Hoffman


---------- Original Message ----------------------------------
From: Gary MacKay <gary at edisoninfo.com>
To: ale at ale.org
Date: Sun, 4 Feb 2001 21:49:21 -0500 (EST)

>What port(s) need to be blocked to stop Napster traffic? I have a client
>that found out several employees are using it and would like to prevent
>access in or out.
>
>- Gary
>
>
>--
>To unsubscribe: mail majordomo at ale.org with "unsubscribe ale" in message body.
>
--
To unsubscribe: mail majordomo at ale.org with "unsubscribe ale" in message body.





More information about the Ale mailing list