[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Portsentry, ipchains and pmfirewall

Subject: Re: [cobalt-security] Portsentry, ipchains and pmfirewall
From: Eugene Crosser <crosser@xxxxxxxxxxx>
Date: Sun, 20 Jan 2002 00:47:17 +0300
Organization: Average
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

On Sat, 19 Jan 2002 22:20:08 +0100
Francisco SАnchez <lists@xxxxxxxxxxxxx> wrote:

> Finally, is it the ident service tcp, udp or both.  While in the rule set by
> Michael it should be tcp only, pmfirewall includes a similar rule but for
> tcp and udp...???

As far as I know, theoretically it can be UDP, but I've never seen
servers or clients that made use of UDP.

The "security first" approach sould be: open only those ports you *know*
are needed, then investigate any problems and add those that you forgot.

Eugene

References:
- [cobalt-security] Portsentry, ipchains and pmfirewall
  - From: Francisco Sánchez
- Re: [cobalt-security] Portsentry, ipchains and pmfirewall
  - From: Gerald Waugh
- Re: [cobalt-security] Portsentry, ipchains and pmfirewall
  - From: Francisco Sánchez
- Re: [cobalt-security] Portsentry, ipchains and pmfirewall
  - From: Michael Stauber
- Re: [cobalt-security] Portsentry, ipchains and pmfirewall
  - From: Francisco Sánchez

Prev by Date: Re: [cobalt-security] Portsentry, ipchains and pmfirewall
Next by Date: Re: [cobalt-security] Portsentry, ipchains and pmfirewall
Previous by thread: Re: [cobalt-security] Portsentry, ipchains and pmfirewall
Next by thread: Re: [cobalt-security] Portsentry, ipchains and pmfirewall

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index