> Hi all, I've been using RH 6.0 for over a year and reading this list
> for about the same time. Finally, I've got an external modem and wanna
> try using the internet from Linux (don't get me started on buying an
> expensive machine only to find out most of the components are cheap -
> yes I'm talking Winmodem, etc.). I've done a fair amount of reading
> about security in the past but it was only when I actually started to
> set it up myself that I realized - there seems to be very little
> information about setting up a single machine for internet usage. What I
> really want to know is should I set up ipchains on the machine that is
> accessing the internet, all the literature I've found points to using it
> on a dedicated machine with masquerading. So any hints on how to set up
> nice secure single machine would be gratefully received.
You don't really need ipchains if your services running on your local
machine are secure, but if you want you can take a look at the examples
with masquerading and just remove the masquerading rule.
The most basic firewall configuration would be:
ipchains -A input -p tcp -y -j REJECT
That would drop all incoming SYN attempts, basically preventing anyone
from initiating to your computer via a TCP socket, but still enabling you
to connect to anyone on the outside. This won't protect you from non-TCP
malicious attacks, but TCP covers about 95% of it, and will stop all the
script kiddies from proceeding further.
This rule might have some unfomfortable side effects (e.g. you will only
able to do PASV FTP transfers), but it should get you jump started.
Reading the ipchains docs should get you on your way to more complex
rules.
thornton
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
