lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <3DF9165145FACB4C96977FF650C1E9040963342F@its-mail1.its.corp.gwl.com>
From: james.burnes at gwl.com (Burnes, James)
Subject: closing ports, close them al

Christ-Henning:
 
In order this is what you should do:
 
1.	If you are currently connected to the Internet and don't have any
users who will lose their lives if you disconnect, calmly walk over to your
router's DSL or Cable connection and disconnect it.  You don't know enough
about security to be on the net yet.
2.	Regarding the ports on your firewall.  "Close them.  Close them
all!"
3.	Only open the ports you absolutely need.  Do not let anyone initiate
connections from the outside.  You don't know enough to do that safely yet.
4.	Read an introductory book on firewalling.  I'm sure everyone on this
list has their favorite.  Check out Amazon.
5.	If you want an excellent and free firewall, install OpenBSD with pf.
You will learn some UNIX and that can't be bad.  With luck you will enjoy
this and possibly have a lucrative future in the security industry.
6.	Go out to O'Reilly's site and read the excellent and free four-part
series on securing small networks with OpenBSD and 'pf' by Jaycek Artymiak:
http://www.oreillynet.com/pub/au/832 <http://www.oreillynet.com/pub/au/832> 
7.	Read everything you can on UNIX, as much as you can handle of Win2K,
learn to program, write some shell scripts.
8.	If you want some official training, attend a SANS conference if they
exist in Europe.
9.	Welcome to Security 101
 
 
Jim Burnes
Security Engineer
Great-West, Denver
 
-----Original Message-----
From: Christ-Henning Ljosheim [mailto:chris@...asat.no] 
Sent: Friday, November 07, 2003 1:51 AM
To: full-disclosure@...ts.netsys.com
Subject: [Full-Disclosure] closing ports
 
 
Hi 
I am new in this group (from Norway)
Do you have any tips for which ports I should close to held my network clean
for intruders ?
I've closed port 1214 and 6881 to 6889 . Anyone else I should close ?
 
Chris
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20031107/9e58395e/attachment.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ