[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Portsentry, ipchains and pmfirewall

Subject: Re: [cobalt-security] Portsentry, ipchains and pmfirewall
From: "cbtrussell" <cbtrussell@xxxxxxxxxxx>
Date: Wed, 23 Jan 2002 18:52:08 -0500
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

> Put an ipchains rule in place which will allow only TCP connections to
your
> Webmin port. Obscure the port by not using 10000 but use another port
> instead. Configure Webmin to react only to queries from a specific
IP-address
> or IP-address ranges as well. This combination of efforts lowers the
threat
> somewhat, but not totally.

Ohhh...good idea

> Another option, derived from the earlier discussion: Use the above
methods,
> but as addition launch a small shell script from /etc/rc.d/rc.local which
> issues a shutdown of Webmin a few minutes after the server rebooted. That
way
> you have Webmin accessible for a few minutes after each server reboot.

Even better. Good example of creative thinking.

Thanks for taking the time to share Michael!

Brandon

References:
- Re: [cobalt-security] Portsentry, ipchains and pmfirewall
  - From: _ cbtrussell _
- Re: [cobalt-security] Portsentry, ipchains and pmfirewall
  - From: Michael Stauber

Prev by Date: Re: [cobalt-security] ns in.proftpd[17902]: warning: /etc/hosts.deny
Next by Date: Re: [cobalt-security] Portsentry, ipchains and pmfirewall
Previous by thread: Re: [cobalt-security] Portsentry, ipchains and pmfirewall
Next by thread: Re: [cobalt-security] Portsentry, ipchains and pmfirewall

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index