Hosting Provided By

Re: User?s and Shells

From: Erik Karulf <spammonkey(at)alphamonkey.net>
Date: Sun Dec 22 2002 - 01:38:31 EST

Going off what Jim Small said, another layer can include the restriction of users at the firewall level. In addition to an inbound external firewall an internal firewall can be used for restricting outbound access. Restricting a users outbound access using ipfw\ipchains\iptables can quarintene the compromise to the infected server. Using dynamic rules like

ipfw check-state
ipfw add ???? allow tcp from any to any in uid news keep-state ipfw add ???? deny all from any to any gid daemons

This is kindof off subject but I hope it helps! -Erik Karulf
::am consulting::
FreeBSD Security Consulting Received on Fri Dec 27 00:11:42 2002

This message: [ Message body ]
Next message: Achim Mueller: "Re: User´s and Shells"
Previous message: Adam H. Pendleton: "Re: User?s and Shells"
In reply to: Devdas Bhagat: "Re: User?s and Shells"
Next in thread: Adam H. Pendleton: "Re: User?s and Shells"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:01:19 EDT