iptables SECURITY - default settings
Michael Schwendt
fedora at wir-sind-cool.org
Thu Sep 9 23:16:34 UTC 2004
On Thu, 09 Sep 2004 10:33:04 +0200, Harald Hoyer wrote:
> Wal wrote:
> > Is it possible to have the Fedora Core
> > default, out-of-the-box iptables settings
> > be more like the following?
> >
> > RelatedComponent- system-config-securitylevel
> > File- /etc/sysconfig/iptables
> >
> > # generated by ____
> > #
> > *filter
> > :INPUT DROP [0:0]
> > :FORWARD DROP [0:0]
> > :OUTPUT DROP [0:0]
> > :SecLev505-INPUT - [0:0]
> > -I SecLev505-INPUT -p all -j DROP
>
> Huh?? You are dropping everything in the first place???
No, he's inserting the rules, so above one becomes the last one. ;)
--
Fedora Core release 2 (Tettnang) - Linux 2.6.7-1.494.2.2
loadavg: 0.05 0.04 0.00
More information about the fedora-test-list
mailing list