On Sun, Sep 15, 2002 at 09:43:16PM +0200, Sergio Rodriguez de Guzman Martinez wrote: > You have configured junkbuster to *work* with the local network. If your > box receives a connection from other place it will give a "Operation not > permitted" mesage, but the port is still open to everyone. You can't > configure it in the /etc/junkbuster/acl (access list). To close the port > you must use iptables.
Seeing as I'm probably one of the few people who have used junkbuster, I should point out that you *can* configure junkbuster to only listen on localhost. Just edit the listen-address line in /etc/junkbuster/config. > [EMAIL PROTECTED] (2002-09-15 at 1815.04 +0200): > > Hello, > > > > using debian-testing, I wanted to secure my internet box. First of all, > > I wanted to close unnecessary ports. I noticed one thing: With netstat, > > _all_ ports were open to the whole world: > > > > Proto Recv-Q Send-Q Local Address Foreign Address > > State tcp 0 0 *:6565 *:* LISTEN 8078/junkbuster > > > > But I have configured junkbuster to listen only to my network: > > deny 0.0.0.0/0 > > permit 192.168.42.0/24 > > > > What do I understand wrong here ? TIA ! -- Adam Olsen, aka Rhamphoryncus
