From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1FxyeF-0005xY-0q for garchives@archives.gentoo.org; Wed, 05 Jul 2006 04:05:59 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.7/8.13.6) with SMTP id k653xg8Y001393; Wed, 5 Jul 2006 03:59:42 GMT Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) by robin.gentoo.org (8.13.7/8.13.6) with ESMTP id k653c5O2018974 for ; Wed, 5 Jul 2006 03:38:06 GMT Received: from localhost (localhost [127.0.0.1]) by smtp.gentoo.org (Postfix) with ESMTP id B055364350 for ; Wed, 5 Jul 2006 03:38:05 +0000 (UTC) Received: from smtp.gentoo.org ([127.0.0.1]) by localhost (smtp.gentoo.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 11721-20 for ; Wed, 5 Jul 2006 03:38:03 +0000 (UTC) Received: from ciao.gmane.org (main.gmane.org [80.91.229.2]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTP id 39C37642A8 for ; Wed, 5 Jul 2006 03:38:02 +0000 (UTC) Received: from list by ciao.gmane.org with local (Exim 4.43) id 1FxyD4-0007nE-0Y for gentoo-user@gentoo.org; Wed, 05 Jul 2006 05:37:54 +0200 Received: from www.buffer.net ([24.73.161.102]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Wed, 05 Jul 2006 05:37:54 +0200 Received: from wireless by www.buffer.net with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Wed, 05 Jul 2006 05:37:54 +0200 X-Injected-Via-Gmane: http://gmane.org/ To: gentoo-user@lists.gentoo.org From: James Subject: [gentoo-user] Re: Protecting my server against an individual Date: Wed, 5 Jul 2006 03:37:45 +0000 (UTC) Message-ID: References: <49bf44f10607041556w3db1b64et625c088ba8c56541@mail.gmail.com> <49bf44f10607041738w2ce28c5bq9d569ffc47d44848@mail.gmail.com> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Complaints-To: usenet@sea.gmane.org X-Gmane-NNTP-Posting-Host: main.gmane.org User-Agent: Loom/3.14 (http://gmane.org/) X-Loom-IP: 24.73.161.102 (Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.13) Gecko/20060616) Sender: news X-Virus-Scanned: amavisd-new at gentoo.org X-Spam-Status: No, score=-2.582 required=5.5 tests=[AWL=0.017, BAYES_00=-2.599] X-Spam-Score: -2.582 X-Spam-Level: X-Archives-Salt: 6fb853ba-a494-4c45-8d0a-ead9fcf7aae3 X-Archives-Hash: 59c10c2c4fa1021d7ea6d53e04c0280b Grant gmail.com> writes: > > > > It has come to my attention that a particular person I know may be > > > intent on attacking my server/website in any way possible. He doesn't > > > know much about Linux but does know Windows. What kind of things > > > should I lock down to protect my remote hosted server? I don't have > > > time to get too crazy with security right now, but what kinds of > > > simple tricks might this fellow learn by asking around on forums, etc? > > > > I assuming your server is a web host and it only is using port 80 (http) traffic. > > I do log in via ssh (port 22 I think) and it's also a mail server. > How can I check which ports are open? Does shorewall handle that? You may want to try a tool I just found: kmyfirewall: et-firewall/kmyfirewall Available versions: 0.9.6.2-r1 ~1.0-r2 ~1.0.1 Installed: 0.9.6.2-r1 Homepage: http://kmyfirewall.sourceforge.net/ Description: Graphical KDE iptables configuration tool I just installed it, so I'm going to play around with it. In the handbook you can use the advanced features to config a firewall for a remote system..... ymmv, James I -- gentoo-user@gentoo.org mailing list