[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[cobalt-security] Re: Portsentry - IP chains eta al
- Subject: [cobalt-security] Re: Portsentry - IP chains eta al
- From: Revd leonard payne <vicarage@xxxxxxxxxxxxxx>
- Date: Sun, 08 Apr 2001 08:01:04 +0100
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
on 7/4/01 8:07 pm, Carrie .. (my white chocolate lady --- )
> I've noticed a slight slow-down in FTP transfer speed since I put the
> ipchains and 'really anal' rule into effect. Nothing major, but enough
> to make *me* notice. I'm wondering if taking 137 out of the config
> would beef that back up a little. You think?
I doubt it - It takes a nanosecond or two to react to the scan - I
personally havent worried when I was scanning - I have now removed it. I
must admit that I'm only an amateur but it seems that if you can ensure
there are no services running on the port then don't bother monitoring it
anyway.
Also - I understood that if I needed to reallow some IP's, I just needed to
delete them from the Hosts.deny file. Is this not so? Is there more work to
be done?
Meantime - Can anyone advise , on or offlist, how IP chains were configured.
--
Lovely to see your signature again Carrie
Blessings
revd Leonard