Jump to content

Recommended Posts

Posted

I've got a pc running debian which provides only ssh (-p 22).

If I use iptables to block all incoming traffic not related to port 22, does that really make sense? I mean, there are no other services listening on a port.

Posted
I've got a pc running debian which provides only ssh (-p 22).

If I use iptables to block all incoming traffic not related to port 22, does that really make sense? I mean, there are no other services listening on a port.

you don't really need a firewall unless you're giving other users access to the box and you don't want them running anything that listens

Posted

@SomeoneE1se: Sounds reasonable

I came to the conclusion that I don't need a firewall but a monitoring tool which reports me logins/failed logins/etc (-> OSSEC)

Posted

You should take note of which ports are listening and and make sure the deamons listening on them are kept current or stop them if they are unnecessary.

Posted

You really should change it from port 22 and set the maximum authentication accepts to two, with your box blocking an IP after the two accepts.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...