Re: Save ports

2007-03-07 Thread Toni Mueller
Hi, On Tue, 06.03.2007 at 12:40:07 +0100, Almir Karic <[EMAIL PROTECTED]> wrote: > On 3/5/07, Toni Mueller <[EMAIL PROTECTED]> wrote: > >it depends. My current impression is that if you can get away with > >having the TCP stack reject packets w/o spending the effort of running > >it through pf, th

Re: Save ports

2007-03-06 Thread Almir Karic
On 3/5/07, Toni Mueller <[EMAIL PROTECTED]> wrote: Hi, On Thu, 22.02.2007 at 22:36:21 +0100, Joachim Schipper <[EMAIL PROTECTED]> wrote: > Just filtering aggressively using pf works as well, of course. it depends. My current impression is that if you can get away with having the TCP stack reje

Re: Save ports

2007-03-05 Thread Toni Mueller
Hi, On Thu, 22.02.2007 at 22:36:21 +0100, Joachim Schipper <[EMAIL PROTECTED]> wrote: > Just filtering aggressively using pf works as well, of course. it depends. My current impression is that if you can get away with having the TCP stack reject packets w/o spending the effort of running it thro

Re: Save ports

2007-02-22 Thread Stuart Henderson
On 2007/02/22 22:36, Joachim Schipper wrote: > I must admit to not being aware of what would be running on 53/tcp. > netstat is your friend $ fstat | grep tcp.*:53

Re: Save ports

2007-02-22 Thread Joachim Schipper
On Tue, Feb 20, 2007 at 06:47:41PM -0800, Bray Mailloux wrote: > I ran an nmap -sS localhost which output > > port state service > 13/tcp open daytime > 22/tcp open ssh > 25/tcp open smtp > 37/tcp open time > 53/tcp open domain > 11

Re: Save ports

2007-02-21 Thread Markus Lude
On Tue, Feb 20, 2007 at 08:01:19PM -0700, Open Phugu wrote: > On 2/20/07, Bray Mailloux <[EMAIL PROTECTED]> wrote: > >I ran an nmap -sS localhost which output > > > >port state service > >13/tcp open daytime > >22/tcp open ssh > >25/tcp open smtp > >37/

Re: Save ports

2007-02-20 Thread Open Phugu
Turn off inetd to close 13,37,133. Configure sendmail not to listen on ports 25 and 587, That leaves 22(ssh) and 53(domain). On 2/20/07, Bray Mailloux <[EMAIL PROTECTED]> wrote: I ran an nmap -sS localhost which output port state service 13/tcp open daytime 22/tcp

Re: Save ports

2007-02-20 Thread Nick Holland
Bray Mailloux wrote: > I ran an nmap -sS localhost which output > > port state service > 13/tcp open daytime > 22/tcp open ssh > 25/tcp open smtp > 37/tcp open time > 53/tcp open domain > 113/tcpopen auth > 587/tcpopen

Save ports

2007-02-20 Thread Bray Mailloux
I ran an nmap -sS localhost which output port state service 13/tcp open daytime 22/tcp open ssh 25/tcp open smtp 37/tcp open time 53/tcp open domain 113/tcpopen auth 587/tcpopen submission This BSD box will be