Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

Home router guide and security (or lack thereof??)
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
IntergalacticWalrus
Guru
Guru


Joined: 07 Jan 2003
Posts: 513
Location: Montreal QC (Canada)
PostPosted: Thu Jun 02, 2005 5:12 am    Post subject: Home router guide and security (or lack thereof??) Reply with quote
Hey, yesterday I've set up a home router with Gentoo, with the help of the helpful guide, and today I've noticed thanks to nmap (ran on a machine out of my local network) that all of the services on my router are open to the Internet !!!!! WTF?? I know next to nothing as to how to set up iptables, but I trusted those instructions in the guide, thinking they were safe since the author probably knew what he was doing, but it turned out it doesn't seem to lock up any ports! Have I missed something? It pretty freaked me out to notice that, according to nmap, my nfs port was open. Does it mean someone could mount my nfs exports from the 'net?

Last edited by IntergalacticWalrus on Thu Jun 02, 2005 5:18 am; edited 1 time in total
Back to top
View user's profile Send private message
pjp
Administrator
Administrator


Joined: 16 Apr 2002
Posts: 20589
PostPosted: Thu Jun 02, 2005 5:18 am    Post subject: Reply with quote
I haven't used the guide, but none of the "section headings" had the word security in it, so I don't see a reason to expect much security from it. Check out the Gentoo Security Handbook.
_________________
Quis separabit? Quo animo?
Back to top
View user's profile Send private message
IntergalacticWalrus
Guru
Guru


Joined: 07 Jan 2003
Posts: 513
Location: Montreal QC (Canada)
PostPosted: Thu Jun 02, 2005 5:21 am    Post subject: Reply with quote
One thing I don't understand in particular is that the guide has a line to open up ssh (iptables -A INPUT -p TCP --dport ssh -i eth1 -j ACCEPT), but from my nmap scan this seemed futile since everything else appeared open.
Back to top
View user's profile Send private message
pjp
Administrator
Administrator


Joined: 16 Apr 2002
Posts: 20589
PostPosted: Thu Jun 02, 2005 5:27 am    Post subject: Reply with quote
Maybe its a bug in the guide, or a typo/misconfig on your part. Have you searched bugzilla to see if anything has been reported? If you don't find anything, double check your config against the doc, and file a bug report.
_________________
Quis separabit? Quo animo?
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2025 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy