From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1LyW01-0004jt-Eu for garchives@archives.gentoo.org; Mon, 27 Apr 2009 18:56:17 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id DA76FE04D1; Mon, 27 Apr 2009 18:56:14 +0000 (UTC) Received: from mx01.admin-box.com (mx01.admin-box.com [78.47.249.108]) by pigeon.gentoo.org (Postfix) with ESMTP id 7644BE04D1 for ; Mon, 27 Apr 2009 18:56:14 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mx01.admin-box.com (Postfix) with ESMTP id 565502024B5B for ; Mon, 27 Apr 2009 20:56:13 +0200 (CEST) X-Virus-Scanned: Debian amavisd-new at mx01.admin-box.com Received: from mx01.admin-box.com ([127.0.0.1]) by localhost (mx01.admin-box.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QJOI8yOJejis for ; Mon, 27 Apr 2009 20:56:08 +0200 (CEST) Received: from [192.168.0.137] (e178033252.adsl.alicedsl.de [85.178.33.252]) (Authenticated sender: daniel@troeder.de) by mx01.admin-box.com (Postfix) with ESMTPSA id 4AE892024B55 for ; Mon, 27 Apr 2009 20:56:08 +0200 (CEST) Subject: Re: [gentoo-user] Is this firewall safe? From: Daniel Troeder To: gentoo-user@lists.gentoo.org In-Reply-To: <49F22EEB.1030509@cdf123.net> References: <93d30e950904240828t6e20bd22v2946d302c2cc5843@mail.gmail.com> <49F1F017.10302@cdf123.net> <1240593796.13872.20.camel@mayo.local> <93d30e950904241140u4b671695l2e7a60a427388491@mail.gmail.com> <1240601921.13872.131.camel@mayo.local> <49F22EEB.1030509@cdf123.net> Content-Type: multipart/signed; micalg="pgp-sha1"; protocol="application/pgp-signature"; boundary="=-F3NyOZ5mMMXpzPEFt3Wf" Date: Mon, 27 Apr 2009 20:56:07 +0200 Message-Id: <1240858567.25852.9.camel@mayo.local> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org Mime-Version: 1.0 X-Mailer: Evolution 2.24.5 X-Archives-Salt: 30a0541c-e500-43e3-a011-ebb6af39c62a X-Archives-Hash: 08c0f7ef18ebb9cf96d9af35f424f77d --=-F3NyOZ5mMMXpzPEFt3Wf Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Fri, 2009-04-24 at 16:28 -0500, Chris Frederick wrote: > Now I'm also keeping in mind that you are on a laptop with no remote > services. If you start allowing services, then that will change things. > If clients are going to be connection to you for certain services, you > should be more accommodating to them and play nice with the network > where possible. I think you're right. I often tend to think in my "server/network admin ways". For a notebook - possibly connecting to unknown, public networks, it may be a good idea to stay "hidden". > > I would recommend running nmap in crontab if you want to scan your > network (look up ndiff on nmap's website). > Oh cool - I didn't know about "ndiff". Fetching nmap from SVN now... :) What does "segway" mean? I just found a "personal transporter" thingy online... > P.S. Daniel, no offense taken. I enjoy these debates, it helps us > think differently and learn new tricks. If we are not challenged once > in a while we get complacent, and that's typically when we start making > mistakes. nice :) Bye, Daniel --=20 PGP key @ http://pgpkeys.pca.dfn.de/pks/lookup?search=3D0xBB9D4887&op=3Dget # gpg --recv-keys --keyserver hkp://subkeys.pgp.net 0xBB9D4887 --=-F3NyOZ5mMMXpzPEFt3Wf Content-Type: application/pgp-signature; name="signature.asc" Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.11 (GNU/Linux) iEYEABECAAYFAkn1/8cACgkQg3+4tbudSIfOUwCfX3iDwYuPpvVwO6UYFlh5DfVC 3y8An2FIanZ92PXpsufPC9HUsHZf4bsJ =Xk8m -----END PGP SIGNATURE----- --=-F3NyOZ5mMMXpzPEFt3Wf--