[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] Ports to keep open in a firewall.
- Subject: Re: [cobalt-users] Ports to keep open in a firewall.
- From: "E.B. Dreger" <eddy+public+spam@xxxxxxxxxxxxxxxxx>
- Date: Tue Mar 25 21:00:01 2003
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
NS> Date: Tue, 25 Mar 2003 17:08:11 -0000
NS> From: Neil Stringer
NS> If I am to place a Raq4 behind a firewall, what ports do I
NS> want to let through to it. Here's my first stab...
[ snip ]
NS> Anything I have missed?
Yes. Search the archives for information on passive FTP. You
need to allow it; the simple rules listed will break it.
Thankfully, ProFTPD is very firewall-friendly.
Also, I'm unsure about 445/UDP... if you wish to allow HTTPS,
that's on 443/TCP, with Cobalt management on 444/TCP as others
have noted.
Finally, _do not_ leave MySQL open in general. There's no need,
and exploitable vulnerabilities have popped up.
Eddy
--
Brotsman & Dreger, Inc. - EverQuick Internet Division
Bandwidth, consulting, e-commerce, hosting, and network building
Phone: +1 (785) 865-5885 Lawrence and [inter]national
Phone: +1 (316) 794-8922 Wichita
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Date: Mon, 21 May 2001 11:23:58 +0000 (GMT)
From: A Trap <blacklist@xxxxxxxxx>
To: blacklist@xxxxxxxxx
Subject: Please ignore this portion of my mail signature.
These last few lines are a trap for address-harvesting spambots.
Do NOT send mail to <blacklist@xxxxxxxxx>, or you are likely to
be blocked.