[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] Did I just shoot myself in the foot? (IPChains)
- Subject: Re: [cobalt-security] Did I just shoot myself in the foot? (IPChains)
- From: Gerald Waugh <gwaugh@xxxxxxxxxxxxxxxxxxxxxxx>
- Date: Sat, 4 May 2002 14:08:14 -0400
- Organization: Front Street Networks LLC
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
On Saturday 04 May 2002 01:52 pm, Nicolae wrote:
> ipchains -A input -j DENY -p all -l -s 65.170.XX.XXX/0 -d 0.0.0.0/0
>
> I am consern about the line above... Did I lock everything? I should've
> gone with the cron shell or every 10 minutes to reload / flush things..
>
> I was testing it and trying to block the above IP from trying to login
> to
> FTP annonymous. I also wanted to block few IPs that belong to *.tw
>
Not sure, what is the -I for It looks to me like a syntax error ( -I is for
insert kind of the same as -A)
Are you sure the rule is installed?
If you want to block ftp, it is easier to use /etc/hosts.deny
in.progtpd : 65.170.XX.XXX
Are you still logged in?
look at ipchails -L -n
and see if the rule is running!
--
Gerald Waugh : Registered Linux user # 255245
http://www.frontstreetnetworks.com
Front Street Networks LLC - ph. 203.785.0699
229 Front Street, Ste. #C, New Haven, CT, United States of America
2:00pm up 43 days, 21:28, 3 users, load average: 1.03, 1.15, 1.23