[olug] compromised again

Dietz, John D. dietz_j at penguinpowered.com
Mon Oct 2 00:11:29 UTC 2000 

I recently saw that Linksys Cablemodem/DSL Router going quite cheap on
buy.com


John Dietz
-----------------------------------
e-mail: dietz_j at penguinpowered.com

-----Original Message-----
From: Phil Brutsche [mailto:pbrutsch at creighton.edu]
Sent: Sunday, October 01, 2000 4:51 PM
To: OLUG
Subject: Re: [olug] compromised again


A long time ago, in a galaxy far, far way, someone said...

> Ok......I have these rules in there now.
> ipchains -A input -p tcp -s 0/0 25 -d 0/0 1024: -j ACCEPT
> ipchains -A input -p udp -s 0/0 25 -d 0/0 1024: -j ACCEPT

They're a bit general - IMO it would be better to explicitly say which IPs
can connect.  Generally speaking it allows incoming SMTP data on a SMTP
conection you initiated.

> I'm guessing the udp protocol isn't needed at all.

No it's not.

> These rules were given to me by another person in olug so I have no
> clue what 1024 is either :)

The "-d 0/0 1024:" says "destination of any IP number and port number 1024
and higher".

> The -s 0/0 just means source ip of anywhere correct?

Yes.

> In any case I'm going to put your rules in rc.firewall and take the
> current rules for port 25 out.
>     I think I'm a good candidate too for the Linksys Cablemodem/DSL
router,at
> least until I understand firewall rules better because I'm sick of getting
> cracked and reinstalling my o/s.
> Do you by chance know a  address for their homepage?

http://www.linksys.com

You can get them locally at Nebraska Furniture Mart and BestBuy (among
other places) although you can get better deals ($20-$30 or so less) on
ebay.

--
----------------------------------------------------------------------
Phil Brutsche					pbrutsch at creighton.edu

"There are two things that are infinite; Human stupidity and the universe.
And I'm not sure about the universe." - Albert Einstein


---------------------------------------------------------------------
To unsubscribe, e-mail: olug-unsubscribe at bstc.net
For additional commands, e-mail: olug-help at bstc.net



---------------------------------------------------------------------
To unsubscribe, e-mail: olug-unsubscribe at bstc.net
For additional commands, e-mail: olug-help at bstc.net

More information about the OLUG mailing list