Hey! Don't forget nmapfe, the gui front end for nmap. Very nice tool for
scanning novices. There should be links at insecure.org to get nmapfe.
Smitty
On Friday 06 July 2001 10:24, you wrote:
> I'm planning to give an ipchains/iptables presentation at the Wed Tampa
> SLUG meeting if you want to be there. I'll try to cover all of this
> stuff.
>
> Essentially though, the very first rule of firewalling is "Deny by
> default." Which means deny EVERYTHING through the firewall UNLESS you
> know FOR SURE that it should be allowed.
>
> And that tool I used was called "nmap". You can get it at:
>
> http://www.insecure.org/nmap/
>
> I usually just slap the ipchains script in root's home directory and
> make a ln to it from the appropriate rc.d directory.
>
> Russell Hires wrote:
> > Hey everyone,
> >
> > I know we just had a major firewall discussion, but I'm just late, I
> > guess... ;-)
> >
> > I remember at the CTS Derrick was chock full of info on the firewall he
> > had set up. So, I've been reading the Firewall HOWTO and the Ipchains
> > HOWTO, and I've got some questions...
> > I guess this is to Derrick, but anyone else feel free to chime in...
> >
> > First, what were the services you disabled? The HOWTOs say time and
> > discard and a few others are internal services. What do they do?
> >
> > Second, what software did you use to scan the other machine that you
> > pointed out that didn't have some of those services disabled?
> >
> > Third, where do you keep the ipchains script? For me, it seems that
> > Debian has got some default rules and thus a default script, but I don't
> > exactly know where to find it...well, I guess I don't need to know to
> > edit it, because there is a utility called, aptly, "ipchains," so I
> > should just be able to type (from the command line) "ipchains -A
> > <chain>", at least according to the man page...
> >
> > Thanks!
> >
> > Russell
This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 15:44:35 EDT