[PLUG] iptables redux
Roderick A. Anderson
raanders at acm.org
Tue Aug 17 13:55:03 UTC 2004
First though, I'll get back to all about the HUD/RD softwarein the next
few days. The workie monster grabbed me for a bit.
Now to the iptables question.
Do deny/drop/reject rules come before or after the accept rules.
Short story. I'm still getting the script kiddies pounding at my sshd
port and the sshd_config setting still lets them try to log in but never
validates them. My preference would be to block all port 22 connections
except for two or three addresses or address ranges.
So should I deny all, then accept the few I want; or accept the few, then
deny the rest, or just accept the few?
Thanks,
Rod
--
"Open Source Software - You usually get more than you pay for..."
"Build A Brighter Lamp :: Linux Apache {middleware} PostgreSQL"
More information about the PLUG
mailing list