From: Tom E. <te...@sh...> - 2007-04-30 14:41:58
|
Marc Mertes wrote: > Hey Guys, >=20 > I run Shorewall 3.4.2 on a Ubuntu 6.06 server machine. > My default policy is drop any, > my rules begin with drop any and end with drop any A real belt and suspenders man, I see. >=20 > After editing the files /usr/share/shorewall/action.Drop and Reject > I was able to steath Port 113. Two things. a) The next time that you upgrade Shorewall, your changes to those files will be overwritten. You need to copy the files to /etc/shorewall then modify the copies. b) Don't come complaining to the list if you have outgoing connection problems. For example, you will probably have difficuly connecting to IRC= =2E > But Port 1 (tcpmux) is still only closed. > Does anybody know how to steath this port too? Shorewall's default setup has no rules whatsoever for port 1. -Tom --=20 Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ te...@sh... PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key |