From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1FxvoB-0003hT-RE for garchives@archives.gentoo.org; Wed, 05 Jul 2006 01:04:04 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.7/8.13.6) with SMTP id k6511EDf019921; Wed, 5 Jul 2006 01:01:14 GMT Received: from mxo1.broadbandsupport.net (mxo1.broadbandsupport.net [209.55.3.81]) by robin.gentoo.org (8.13.7/8.13.6) with ESMTP id k650pTZb030617 for ; Wed, 5 Jul 2006 00:51:29 GMT Received: from [192.168.100.4] (unknown [207.68.230.60]) by mxo1.broadbandsupport.net (Postfix) with ESMTP id 92F7F3141BD for ; Tue, 4 Jul 2006 20:51:22 -0400 (EDT) Message-ID: <44AB0D0A.4080001@vista-express.com> Date: Tue, 04 Jul 2006 19:51:22 -0500 From: Dale User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.0.4) Gecko/20060703 SeaMonkey/1.0.2 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Re: Protecting my server against an individual References: <49bf44f10607041556w3db1b64et625c088ba8c56541@mail.gmail.com> <49bf44f10607041738w2ce28c5bq9d569ffc47d44848@mail.gmail.com> In-Reply-To: <49bf44f10607041738w2ce28c5bq9d569ffc47d44848@mail.gmail.com> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-broadbandsupport.net-MailScanner-Information: Please contact the ISP for more information X-broadbandsupport.net-MailScanner: Found to be clean X-broadbandsupport.net-MailScanner-From: teendale@vista-express.com X-Spam-Status: No X-Archives-Salt: 707ae909-89dc-4fa3-8b24-4678f69f3e25 X-Archives-Hash: 253471431b2b2119a74fa1fc55e58138 Grant wrote: >> > It has come to my attention that a particular person I know may be >> > intent on attacking my server/website in any way possible. He doesn't >> > know much about Linux but does know Windows. What kind of things >> > should I lock down to protect my remote hosted server? I don't have >> > time to get too crazy with security right now, but what kinds of >> > simple tricks might this fellow learn by asking around on forums, etc? >> >> I assuming your server is a web host and it only is using port 80 >> (http) traffic. > > I do log in via ssh (port 22 I think) and it's also a mail server. > How can I check which ports are open? Does shorewall handle that? This is my theory. If you can, install webmin and shorewall. You can use webmin to configure shorewall from what I have read. Basically you want to block all but what you need to keep open, including ssh. Hope that helps. Dale :-) :-) -- gentoo-user@gentoo.org mailing list