Hello Ludwig, hello list, * Ludwig Nussel wrote on Jan/18/2007:
Andreas Wagner wrote:
[...] I took this to mean thatI had to specify
FW_ALLOW_INCOMING_HIGHPORTS_UDP="20 6277" (and possibly FW_SERVICES_EXT_UDP="ntp 6277")
in /etc/sysconfig/SuSEfirewall2, which brought up the alerts above.
Can you tell me if I got it right and if this would be considered a reason to keep FW_ALLOW_INCOMING_HOGHPORTS_UDP?
I didn't understand the description that way. FW_SERVICES_EXT_UDP should be sufficient. If you use FW_SERVICES_ACCEPT_EXT instead you can also limit the IP addresses that have access to the port.
oh, I see. I was -- and actually still am -- confused with regards to client and server setup. (I'd only want a client running.) I guess I'll just have to try what works and what doesn't when I get to installing it. But maybe I'm not the only one who is keeping an eye on it. AFAIU, it's one of the more popular online checksum services (dcc can be integrated in spamassassin, too). Thanks a lot so far anyway, Andreas -- The past is present in the future. -- My Public PGP Keys: 1024 Bit DH/DSS: 0x869F81BA 768 Bit RSA: 0x1AD97BA5 --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org