[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: http thru firewall

To: Mark Reimers <http://www.100X.com/~mreimers>
Subject: Re: http thru firewall
From: http://dummy.us.eu.org/robert (robert)
Date: Sat, 21 Dec 2002 00:44:23 -0500
In-Reply-To: <4FC446D922EED31188A600B0D0202CC5580DC9@exchange>
Keywords: http://www.100X.com/~mreimers


If you're using RedHat, for the most part, yes.  The main hole is sendmail,
which you should disable.  I think you can use chkconfig to disable it,
something like "chkconfig --remove sendmail" or something.

Is Linux going to be your main gateway machine?  If so, you should install
IP masquerading, then you won't have to worry.  ("What me, worry?")

 > From: Mark Reimers <http://www.100X.com/~mreimers>
 > Date: Tue, 31 Oct 2000 17:31:57 -0500
 >
 > Content-type: text/html ; charset = "iso-8859-1"
 > 
 > ---Executing: html-to-ascii
 > Robert,     I would like to start running day-long unattended http
 > sessions between my machine at home and a couple of servers. This is to
 > download massive amounts of data. My ZoneAlarm of course won't protect
 > me; probably I'll need a linux box. How would you configure linux to
 > allow only data from a few sites but block all TCP requests from
 > elsewhere? Would hosts.allowed be enough?
 > 
 > Mark Reimers
 > 
 > Staff Mathematician
 > 
 > 100X Ventures
 > 
 > 880 Winter St., suite 300,
 > 
 > Waltham, Ma 02451
 > 
 > 781-529-1062
 > 
 >    
 >

Prev by Date: Marnie, Flora, & Tim
Next by Date: Re: dot.com bombs
Previous by thread: Marnie, Flora, & Tim
Next by thread: Re: dot.com bombs
Index(es):
- Date
- Thread