ohkay, here's my firehol script... version 5 interface eth0 internet src not "$UNROUTABLE_IPS" router fwd server ftp accept server ssh accept #server telnet not src 192.168.1.1/24 drop server smtp accept server http accept user apache server pop3 accept client all accept user "tyler root" client ftp accept client ssh accept client telnet accept client smtp accept client pop3 accept everything is getting dropped... any idea? Also, I was wondering: is there a way to do soemthing like client telnet src 192.168.1.1/24 accept, and then do client telnet drop? Thanks, Tyler Littlefield Unlimited horizons head coder. check out our website: tysplace.homelinux.net msn: compgeek134 at hotmail.com aim: st8amnd2005 skype: st8amnd127 ----- Original Message ----- From: Lorenzo Taylor <lorenzo@xxxxxxxxxxxxxxxxxxxx> To: Speakup is a screen review system for Linux. <speakup at braille.uwo.ca> Sent: Saturday, February 10, 2007 10:24 AM Subject: Re: hacking attempts > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > I particularly like a firewall script called FireHOL. By default it > blocks everything and you just open what you want. And the scripting > language that builds the firewall rules is about the easiest to > understand of anything I've ever seen. It's available at > > http://firehol.sourceforge.net, and some distros also have packages > prebuilt for it. The homepage gives you lots of examples of usage for > different configurations. > > HTH, > Lorenzo > - -- > I've always found anomalies to be very relaxing. It's a curse. > - --Jadzia Dax: Star Trek Deep Space Nine (The Assignment) > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.3 (GNU/Linux) > > iD8DBQFFzf/EG9IpekrhBfIRAsjQAKCBZ5nORMkpls4pELm6Hf+l3w4QrQCgzLGf > KP9NfwN9y2FshJybEJI2BQc= > =6I27 > -----END PGP SIGNATURE----- > > _______________________________________________ > Speakup mailing list > Speakup at braille.uwo.ca > http://speech.braille.uwo.ca/mailman/listinfo/speakup
