[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] ipchains adding to rc.local

Subject: Re: [cobalt-security] ipchains adding to rc.local
From: "R. Hamburg" <cobalt@xxxxxxx>
Date: Wed, 25 Jul 2001 23:34:52 +0200
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

> That's all you need to drop into the
> rc.firewall.blocked file. No need to enter the other
> stuff (/sbin/ipchains -I input -s 203.232.240.215 -j
> DENY -l) as that's what the ghouls script does for
> you.. Just start the ghoul script as
> ./what-ever-you-name-it from the /etc/rc.d/ directory.
> The ghoul script will protect your machine in both
> directions (in/out) where the method you mentioned
> only works for inward bound traffic.
>
> Good luck!
> Scott


Hi Scott,

I will try this one for sure !
But ofcourse I need to ask ONE stupid question at least !! <GRIN>

The script you pasted in your mail should be installed in /etc/rc.d
is there a perference for a name ?? Or can I just call the file whatever I
want ?

And when I understand correctly the file rc.firewall.blocked should be an
empty file. Chmodded to ?? 700 ??

thanks for your patience !

- Robbert

References:
- [cobalt-security] ipchains adding to rc.local
  - From: Scott F

Prev by Date: Re: [cobalt-security] ipchains adding to rc.local
Next by Date: Re: [cobalt-security] 4.0.1 - 9925
Previous by thread: [cobalt-security] ipchains adding to rc.local
Next by thread: Re: [cobalt-security] ipchains adding to rc.local

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index