[XCSSA] Security advice
firestorm_v1
firestorm-v1@satx.rr.com
Wed, 30 Jan 2002 21:25:30 -0600
I need some security advice. I have a NAT-firewalling router running
RedHat 7.2. Using ipchains and the (in)famous PMfirewall script I have
blocked access to all but two outside ports, SSH and HTTP (port 8080)
I have been advised that SSH protocol 1 is not secure, so I am running
SSH2 only. I used the "UseProtocol 2" statement in /etc/ssh/sshd_config
I have been advised that using IPchains is vulnerable to outside attacks.
Is this true? I know that SSH and HTTP are vulnerable, but how can you
hack a port that doesn't respond in the first place?
I'm open to suggestions on what I need to make sure that this router
stays (more or less) secure. I knw that just having a public IP address
is bad enough to get hacked but I would like more info on this matter.
Thanks!
--
FIRESTORM_v1
"Partnership for an idiot-free America"
http://www.theratshack.net
http://lanparty.theratshack.net (One >NEW< lan party)