[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] RE: RE: Shut myself in the foot... I think (I locked myself out) IpChains - LMAO!

On Saturday 04 May 2002 03:56 pm, Nicolae wrote:
> > Message: 3

> I installed chains, and tried locking someone with the listed IP below.
>
> I read careful notes and such but I think the -d 0.0.0.0/0 etc worries
> me.
>
> [root /etc]# tail ipchains.rules
>
> :input ACCEPT
> :forward ACCEPT
> :output ACCEPT
>
> -A input -s 0.0.0.0/0.0.0.0 -d 0.0.0.0/0.0.0.0 137:137 -p 6 -j REJECT -l
> -A input -s 0.0.0.0/0.0.0.0 -d 0.0.0.0/0.0.0.0 138:138 -p 6 -j REJECT -l
> -A input -s 0.0.0.0/0.0.0.0 -d 0.0.0.0/0.0.0.0 139:139 -p 6 -j REJECT -l
> -A forward -s 0.0.0.0/0.0.0.0 -d 0.0.0.0/0.0.0.0 -j DENY [root /etc]#
> ipchains -A input -j DENY -p all -l -s 65.170.79.187/0 -d 0.0.0.0/0

Yea, but you are blocking your own IP addresses

> My BOX IPs are: 65.170.79.187 and 188.  YOU FIGURE out what I did...
>

> p.s. Can this also be used to render the box useless and only way around
> it is to "RECOVER ISO Disk"
> and install everything from scratch?

No, you can go in through the console port and fic it

> It is sort of nice though, when your "lease" is up and you are not sure
> what your co-location data
> center might do with the box or data inside it.. just format everything
> or "LOCK-UP" the box. Right?

I would just erase all the files on the drive

-- 
Gerald Waugh : Registered Linux user # 255245
http://www.frontstreetnetworks.com
Front Street Networks LLC - ph. 203.785.0699
229 Front Street, Ste. #C, New Haven, CT, United States of America
4:32pm up 44 days, 0 min, 3 users, load average: 1.16, 1.03, 1.10