If you are going to receive SMTP mail on your site, you will absolutely have to keep port 25 open (and have a mailer daemon running on it), BTW: Getting a port scan doesnt always mean someone is h4x0r1ng you ;-) .-. /v\ L I N U X // \\ >I know KungFu!!< /( )\ ^^-^^ I decided to close port 110, because now people are forced to use port 995 to get there Mail. The same should be true for the port 25, but I didn't try it, so I am also interessted in some information. Harald On 18-Feb-02 Mike Garabedian wrote:
Question
I have built a firewall using SUSE firewall 2 I have also installed qmail
Now the regular smtp port is 25
And the pop3 port is 110
I have also added ssl wrappers to smtp and pop3
As per the Qmail handbook,
The ssl wrapped ports are 465 for smtp and 995 for pop3
Do I need to remove ports 110 and 25 from the firewall .config file and replace them with the new ones or can I just leave these in, I fear that if I do then people will still try to scan these ports.but do they have to be there for email to come in..
Mike
-- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com Security-related bug reports go to security@suse.de, not here
---------------------------------- E-Mail: harald.schmidt@tuwien.ac.at Date: 19-Feb-02 Time: 08:29:33 ---------------------------------- -- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com Security-related bug reports go to security@suse.de, not here