[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: Is my computer safe enough if I use just iptables?

From: Leonard Isham <leonard isham gmail com>
To: vj vijaygill homelinux net, For users of Fedora Core releases <fedora-list redhat com>
Cc:
Subject: Re: Is my computer safe enough if I use just iptables?
Date: Fri, 15 Oct 2004 09:52:12 -0400

On Fri, 15 Oct 2004 14:43:40 +0100 (IST), VJ <vj vijaygill homelinux net> wrote:
> Harry,
>   Thanks a lot for your reply. I am using DROP policy by default, and
> just open the required holes in firewall (HTTP and SMTP only). This PC
> is not used for browsing at all. It is just a firewall + samba server +
> http server + smtp server + ftp server + MythTV recording +
> playing(both backend + frontend) + more little jobs.
>   I do use DROP but I do not log REJECT. Should I do that?

Keep using drop.  reject provides additional information to an attacker.

-- 
Leonard Isham, CISSP 
Ostendo non ostento.

Follow-Ups:
- Re: Is my computer safe enough if I use just iptables?
  - From: Bruno Wolff III

References:
- Is my computer safe enough if I use just iptables?
  - From: VJ
- Re: Is my computer safe enough if I use just iptables?
  - From: Scot L. Harris
- Re: Is my computer safe enough if I use just iptables?
  - From: Harry Hoffman
- Re: Is my computer safe enough if I use just iptables?
  - From: VJ

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]