Hosting Provided By

Re: Why not have firewall rules by default?

From: Jose Marrero <jmm19(at)humboldt.edu>
Date: Mon Jan 28 2008 - 15:43:01 EST

>> Please check out section 3.6 of the "Securing Debian Manual". IIRC:
>>
>> - a default install (i.e. one in which you just press "Enter" all the
>> way and
>> select no tasks) will get you OpenSSH, Exim and portmap, with Exim
>> bound to
>> the loopback interface.
>
> portmap is typically not bound to the loopback interface. It's mostly
> used for fam, I think, so this should really be feasible. (But the
> localhost restriction patches for Sun RPC are broken anyway, AFIACS.)
>

He is not saying portmap is bound to the loopback interface, only Exim. However, this is one of the first things I do on a typical Debian install.

-- 
-JM.

“Estos días azules y este sol de la infancia.“(Antonio Machado-1939)


-- 
To UNSUBSCRIBE, email to debian-security-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Received on Mon Jan 28 15:50:54 2008

This message: [ Message body ]
Next message: Frederic Thery: "RE: [SECURITY] [DSA 1478-1] New mysql-dfsg-5.0 packages fix several vulnerabilities"
Previous message: Florian Weimer: "Re: Why not have firewall rules by default?"
In reply to: Florian Weimer: "Re: Why not have firewall rules by default?"
Next in thread: Javier Fernández-Sanguino Peña: "Re: Why not have firewall rules by default?"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Mar 19 2008 - 06:55:32 EDT