[PLUG] iptables redux

Roderick A. Anderson raanders at acm.org
Thu Aug 19 07:38:02 UTC 2004


On Wed, 18 Aug 2004 freyley at gmx.net wrote:

> > -A RH-Lokkit-0-50-INPUT -s 0.0.0.0/0.0.0.0  -p tcp --dport 22 -j REJECT
> 
> Reject is a lot of work. Frequently cleaner just to DROP

In the case where I'm doing this DROP'd is what I need to do since I can't 
CANE, WHIP, or TORTURE.  Everyone learns to deal with REJECTion.  Stupid 
behavior should hurt. (You've all heard the one about the difference 
between; dumb, ignorant and stupid ... right?)

Thanks Jeff.  As I see it's working -- I son't see them in my logreports 
-- I planned on refining stuff a bit.  THis will make a good change.


Rod
-- 
    "Open Source Software - You usually get more than you pay for..."
     "Build A Brighter Lamp :: Linux Apache {middleware} PostgreSQL"







More information about the PLUG mailing list