If you are going to receive SMTP mail on your site, you will absolutely have to keep port 25 open (and have a mailer daemon running on it), BTW: Getting a port scan doesnt always mean someone is h4x0r1ng you ;-) .-. /v\ L I N U X // \\ >I know KungFu!!< /( )\ ^^-^^ I decided to close port 110, because now people are forced to use port 995 to get there Mail. The same should be true for the port 25, but I didn't try it, so I am also interessted in some information. Harald On 18-Feb-02 Mike Garabedian wrote:

Question

I have built a firewall using SUSE firewall 2 I have also installed qmail

Now the regular smtp port is 25

And the pop3 port is 110

I have also added ssl wrappers to smtp and pop3

As per the Qmail handbook,

The ssl wrapped ports are 465 for smtp and 995 for pop3

Do I need to remove ports 110 and 25 from the firewall .config file and replace them with the new ones or can I just leave these in, I fear that if I do then people will still try to scan these ports.but do they have to be there for email to come in..

Mike

-- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com Security-related bug reports go to security@suse.de, not here

---------------------------------- E-Mail: harald.schmidt@tuwien.ac.at Date: 19-Feb-02 Time: 08:29:33 ---------------------------------- -- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com Security-related bug reports go to security@suse.de, not here