Mailinglist Archive: opensuse-security (363 mails)
| < Previous | Next > |
Re: [suse-security] have I been invaded?
- From: Sigfred Håversen <suselist@xxxxxxxxx>
- Date: Wed, 4 Jun 2003 09:08:58 +0200
- Message-id: <200306040908.58211.suselist@xxxxxxxxx>
On Wednesday 04 June 2003 05:38, Richard wrote:
> On Tue, 2003-06-03 at 22:16, John Andersen wrote:
> > Make sure the protocol line says as above and not
> > Protocol 2,1
> > or
> > Protocol 1,2
>
> Thanks John, I made that change. Do you have any idea why my default
> route has that strange destination? I went through Yast and by all
> that I can see it should not be that but should be the IP of my isp
> unless I am completely wrong. As I recall, it used to be the IP
> (24.233.51.9) that I get when the network is started. I did a whois
> on the name and got that it was available. Strange!!!
> ra
Unless you want the whole world to connect to your ssh, you might also
consider to give access to ssh based upon IP adress. This may be done
from the firewall, but also from tcp_wrappers (by editing
/etc/hosts.allow and /etc/hosts.deny. See those files for examples.).
tcp_wrappers works even when the firewall is down.
Putting a cheap DSL router in front of your SuSE machine will help
against misconfigured firewalls, if this is relevant for your network
setup. I use such a setup at home, even though each and every machine
behind also has a firewall. However, the logs I get is only from what
the DSL router lets through.
Cheers,
Sigfred.
> On Tue, 2003-06-03 at 22:16, John Andersen wrote:
> > Make sure the protocol line says as above and not
> > Protocol 2,1
> > or
> > Protocol 1,2
>
> Thanks John, I made that change. Do you have any idea why my default
> route has that strange destination? I went through Yast and by all
> that I can see it should not be that but should be the IP of my isp
> unless I am completely wrong. As I recall, it used to be the IP
> (24.233.51.9) that I get when the network is started. I did a whois
> on the name and got that it was available. Strange!!!
> ra
Unless you want the whole world to connect to your ssh, you might also
consider to give access to ssh based upon IP adress. This may be done
from the firewall, but also from tcp_wrappers (by editing
/etc/hosts.allow and /etc/hosts.deny. See those files for examples.).
tcp_wrappers works even when the firewall is down.
Putting a cheap DSL router in front of your SuSE machine will help
against misconfigured firewalls, if this is relevant for your network
setup. I use such a setup at home, even though each and every machine
behind also has a firewall. However, the logs I get is only from what
the DSL router lets through.
Cheers,
Sigfred.
| < Previous | Next > |