On Wed, 21 May 2003 at 01:01:10PM -0700, Tib wrote: > > nmap (port scan) or Nessus> (vulnerability scans) scans from outside the > > box, > nmap installed, helped to block a bunch of ports with iptables
Your policy/rules should block ALL traffic (and ALL Ports) and explicitly allow certain ports/traffics rather than trying to selectively block traffic. -- Phillip Hofmeister Network Administrator/Systems Engineer IP3 Inc. http://www.ip3security.com PGP/GPG Key: http://www.zionlth.org/~plhofmei/ wget -O - http://www.zionlth.org/~plhofmei/key.txt | gpg --import -- Excuse #248: You need to upgrade your VESA local bus to a MasterCard local bus.
pgpNSsy4LWrk7.pgp
Description: PGP signature
