Mailinglist Archive: opensuse-security (409 mails)

< Previous Next >
RE: [suse-security] YAST and updates
  • From: "Reckhard, Tobias" <tobias.reckhard@xxxxxxxxxxx>
  • Date: Mon, 19 Aug 2002 08:47:46 +0200
  • Message-id: <96C102324EF9D411A49500306E06C8D1019894D8@xxxxxxxxxxxxxxxxx>
> So how do I set up my firewall so to cater for this?.. is it
> not a nice
> security hole to allow all those ports above 1023 open?.

It uses FTP. Set up an FTP proxy (preferrable) or a stateful helper module
(simpler) to handle it without opening up the entire 'unprivileged' port
range inbound.

Cheers
Tobias

< Previous Next >
Follow Ups