Re: [CAD_CAM_EDM_DRO] eGroups/ worms/ virus
Posted by
dave engvall
on 2000-08-10 16:21:38 UTC
Doug Harrison wrote:
Any serious firewall works very hard to isolate the outside world from your intranet. Address translation via ip masquerading or
chains is only the first step. One should then disable all net services not needed to the outside world. ie. telnet, rlogin, etc.
Use proxies when possible to xfer info across the barrier.
ip masquerading runs with internal ip's in the 192.168.x.x range and ip chains uses 10.10.x.x both ranges are not valid internet
addresses e.g. none of your internal addresses had better ever show up in the real world but are meant to be run in isolated
enviroments.
Get the Linux firewall HOWTO as a starter. O"Reilly also has a good book on firewalls.
I think it is a little risky to expose your server to the internet.
Good luck.
dave
> >. Microsoft can interrogate your computer via a back door that isHi Doug
> programmed into Windows...
> >
>
> I've always maintained that some of the so-called security bugs in the
> IE/W95/W98 platform were put there specifically for this purpose.
>
> Would a server running Linux act as a sufficient firewall for this kind of
> intrusion? I'm assuming that computers tied to the server would be
> transparent to the outside world.
>
> Doug
>
>
Any serious firewall works very hard to isolate the outside world from your intranet. Address translation via ip masquerading or
chains is only the first step. One should then disable all net services not needed to the outside world. ie. telnet, rlogin, etc.
Use proxies when possible to xfer info across the barrier.
ip masquerading runs with internal ip's in the 192.168.x.x range and ip chains uses 10.10.x.x both ranges are not valid internet
addresses e.g. none of your internal addresses had better ever show up in the real world but are meant to be run in isolated
enviroments.
Get the Linux firewall HOWTO as a starter. O"Reilly also has a good book on firewalls.
I think it is a little risky to expose your server to the internet.
Good luck.
dave
Discussion Thread
James Owens
2000-08-09 16:15:26 UTC
Re: [CAD_CAM_EDM_DRO] eGroups/ worms/ virus
Doug Harrison
2000-08-10 13:12:04 UTC
Re: [CAD_CAM_EDM_DRO] eGroups/ worms/ virus
Ron Ginger
2000-08-10 14:08:56 UTC
Re: [CAD_CAM_EDM_DRO] eGroups/ worms/ virus
dave engvall
2000-08-10 16:21:38 UTC
Re: [CAD_CAM_EDM_DRO] eGroups/ worms/ virus
Doug Harrison
2000-08-10 17:11:52 UTC
Re: [CAD_CAM_EDM_DRO] eGroups/ worms/ virus
William Scalione
2000-08-10 17:29:21 UTC
Re: [CAD_CAM_EDM_DRO] eGroups/ worms/ virus
Doug Harrison
2000-08-10 17:50:53 UTC
Re: [CAD_CAM_EDM_DRO] eGroups/ worms/ virus
Ejay Hire
2000-08-11 07:22:38 UTC
Re: [CAD_CAM_EDM_DRO] eGroups/ worms/ virus
Ian Wright
2000-08-16 03:39:27 UTC
Re: [CAD_CAM_EDM_DRO] eGroups/ worms/ virus