Mailinglist Archive: opensuse-security (174 mails)
| < Previous | Next > |
Re: [suse-security] SuSE ssh Distro in US
- From: Gerhard Sittig <Gerhard.Sittig@xxxxxxx>
- Date: Wed, 17 Nov 1999 15:55:54 +0100
- Message-id: <19991117155554.P23521@xxxxxxxxxxxxx>
On Wed, Nov 17, 1999 at 07:41 +0100, Eilert Brinkmann wrote:
Although there are some services out there which don't rely on it
but nevertheless direct a question towards the ident port --
sendmail comes to mind. Make sure not just to DENY this service
but to REJECT it when setting up a firewall. This will speed up
the decision that there won't be an answer :> And once your
ruleset is complete you won't want to log these packets, they
usually show up whenever you run your mail queue to your uplink.
virtually yours - Gerhard Sittig
--
If you don't understand or are scared by any of the above
ask your parents or an adult to help you.
"Aaron K. Poffenberger" <I_hate_spam.akp@xxxxxxxxxxxxx> wrote:
On a related note (security), two questions: 1) Do I need to
have the ident daemon on port 113 running? That port is
currently open on the external interface on my firewall.
No. None of the usual services depends on the ident daemon.
Although there are some services out there which don't rely on it
but nevertheless direct a question towards the ident port --
sendmail comes to mind. Make sure not just to DENY this service
but to REJECT it when setting up a firewall. This will speed up
the decision that there won't be an answer :> And once your
ruleset is complete you won't want to log these packets, they
usually show up whenever you run your mail queue to your uplink.
virtually yours - Gerhard Sittig
--
If you don't understand or are scared by any of the above
ask your parents or an adult to help you.
| < Previous | Next > |