Mailinglist Archive: opensuse-security (320 mails)

< Previous Next >
Antw: [suse-security] Problems Understanding SuSEfirewall2
  • From: "petry" <petry@xxxxxxxxxxxxx>
  • Date: Mon, 19 May 2003 13:55:19 +0200
  • Message-id: <sec8e269.056@fs_hell>
Hello,

as I recognize so far you use active ftp (port 20, ftp-data). IMHO it is a quite large security hole. We only allow passive ftp connections. Try http://slacksite.com/other/ftp.html for some explanation.

Greetings
Olaf


____________________________________________________
Fa. Prof. Dr. G. Hellberg EDV-Beratung & Softwareengineering
Dipl.-Ing. Olaf Petry
Sonnenweg 7
D-30171 Hannover
Germany

Fon: +49 (0)511 / 288 25 90
Fax: +49 (0)511 / 288 25 89
Mobil: +49 (0)177 / 230 22 65
Web: www.DrHellberg.de
E-Mail: info@xxxxxxxxxxxxx

>>> "remote" <remote@xxxxxxxxxxxxxxxxxxxxxxx> 19.05.2003 08:31 >>>
Hi !

LAN except for the following protocols/ports : pop3, pop3s, http, https,
ftp,
ftps, smtp, ssh, domain.
...
FW_SERVICES_EXT_TCP="20 21 22 25 53 80 110 995"


< Previous Next >
This Thread
  • No further messages