Greetings, all, Just looking for some opinions/feedback from y'all.
I'm responsible for a few servers that are connected to the internet. They are all running 2.2.19 kernels with ipchains. Ports are open for apache, ftp, smtp, ssh and imap, but all others are closed with a policy of REJECT. I was talking with a friend of mine who said it's better to have a policy of DENY since that doesn't return any information and if someone is trying to attack the machine on a closed port, it will take much longer to figure it out. Are there any drawbacks to DENY? Is there a general consensus on this subject? Thanks in advance for any suggestions. :) Cheers.................... Matthew Thompson http://mattyt.net [EMAIL PROTECTED] http://www.oz.net/~mattyt -For better or worse, you can't change where you're from or what you've done. You can only hope to change who you are and where you're going. Provided that's necessary, of course. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
