Great So how do I set up my firewall so to cater for this?.. is it not a nice security hole to allow all those ports above 1023 open?. Regards, Thomas Wheeler -= No Trees Were Harmed By Sending This Email, Only A Few Electrons Were Seriously Discomforted =- -----Original Message----- From: Armin Schöch [mailto:armin@iap-kborn.de] Sent: Monday, August 19, 2002 8:39 AM To: Thomas Wheeler Cc: 'suse-security@suse.com' Subject: Re: [suse-security] YAST and updates Hi !
Does any one know what ports yast's update use, I know it uses port21 but what other ports dies it use? I am using the ncurses good old text based update.
The first thing YOU does is sending a "ping" to the ftp-server. If this fails because of a firewall, YOU will tell you: "No network connection". The file transfer is done by standard FTP protocol AFAIK. This means port 21 for the control connection + all highports (>1023) for the data connections. HTH, Armin -- Am Hasenberg 26 office: Institut für Atmosphärenphysik D-18209 Bad Doberan Schloss-Straße 6 Tel. ++49-(0)38203/42137 D-18225 Kühlungsborn / GERMANY Email: schoech@iap-kborn.de Tel. +49-(0)38293-68-102 WWW: http://armins.cjb.net/ Fax. +49-(0)38293-68-50