[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] Portsentry, ipchains and pmfirewall
- Subject: Re: [cobalt-security] Portsentry, ipchains and pmfirewall
- From: "cbtrussell" <cbtrussell@xxxxxxxxxxx>
- Date: Wed, 23 Jan 2002 18:52:08 -0500
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
> Put an ipchains rule in place which will allow only TCP connections to
your
> Webmin port. Obscure the port by not using 10000 but use another port
> instead. Configure Webmin to react only to queries from a specific
IP-address
> or IP-address ranges as well. This combination of efforts lowers the
threat
> somewhat, but not totally.
Ohhh...good idea
> Another option, derived from the earlier discussion: Use the above
methods,
> but as addition launch a small shell script from /etc/rc.d/rc.local which
> issues a shutdown of Webmin a few minutes after the server rebooted. That
way
> you have Webmin accessible for a few minutes after each server reboot.
Even better. Good example of creative thinking.
Thanks for taking the time to share Michael!
Brandon