Mailinglist Archive: opensuse-security (685 mails)

[christian.burri@xxxxxxxxxx]

If you are going to receive SMTP mail on your site, you will absolutely
have to keep port 25 open (and have a mailer daemon running on it),

BTW: Getting a port scan doesnt always mean someone is
h4x0r1ng you ;-)

    .-.
    /v\    L   I   N   U   X
   // \\   >I know KungFu!!<
  /(   )\
   ^^-^^



I decided to close port 110, because now people are forced to use port 995
to
get there Mail. The same should be true for the port 25,
but I didn't try it, so I am also interessted in some information.

Harald


On 18-Feb-02 Mike Garabedian wrote:
> Question
>
> I have built a firewall using SUSE firewall 2  I have also installed
> qmail
>
>
> Now the regular smtp port is 25
>
> And the pop3 port is 110
>
> I have also added ssl wrappers to smtp and pop3
>
> As per the Qmail handbook,
>
> The ssl wrapped ports are 465 for smtp and 995 for pop3
>
> Do I need to remove ports 110 and 25 from the firewall .config file and
> replace them with the new ones or can I just leave these in, I fear that
> if I do then people will still try to scan these ports.but do they have
> to be there for email to come in..
>
> Mike
>
>
>
> --
> To unsubscribe, e-mail: suse-security-unsubscribe@xxxxxxxx
> For additional commands, e-mail: suse-security-help@xxxxxxxx
> Security-related bug reports go to security@xxxxxxx, not here

----------------------------------
E-Mail: harald.schmidt@xxxxxxxxxxxx
Date: 19-Feb-02
Time: 08:29:33
----------------------------------

--
To unsubscribe, e-mail: suse-security-unsubscribe@xxxxxxxx
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here