* block all trafic from input
@ 2005-04-23 10:24 Kashif Ali Bukhari
2005-04-23 11:56 ` Eric Meris Vieira
0 siblings, 1 reply; 5+ messages in thread
From: Kashif Ali Bukhari @ 2005-04-23 10:24 UTC (permalink / raw)
To: netfilter
how can i block all inbond access to my linux box
--
Syed Kashif Ali Bukhari
Network Associate Asia Net
Cell :- +92-300-4018407 , +92-300-4295604
Ph +92-42-111-111-202 Fax +92-42-5840905
MSN:- kbukhari@msn.com ; kashif.bukhari@asia.net.pk
http://asia.net.pk , http://asiatec.biz
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: block all trafic from input
2005-04-23 10:24 block all trafic from input Kashif Ali Bukhari
@ 2005-04-23 11:56 ` Eric Meris Vieira
2005-04-23 18:06 ` Taylor Grant
0 siblings, 1 reply; 5+ messages in thread
From: Eric Meris Vieira @ 2005-04-23 11:56 UTC (permalink / raw)
To: Kashif Ali Bukhari; +Cc: netfilter
Kashif Ali Bukhari wrote:
>how can i block all inbond access to my linux box
>
>
>
>
Try this...
iptables -P INPUT DROP
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: block all trafic from input
2005-04-23 11:56 ` Eric Meris Vieira
@ 2005-04-23 18:06 ` Taylor Grant
2005-04-23 18:13 ` R. DuFresne
0 siblings, 1 reply; 5+ messages in thread
From: Taylor Grant @ 2005-04-23 18:06 UTC (permalink / raw)
To: Eric Meris Vieira; +Cc: Kashif Ali Bukhari, netfilter
> iptables -P INPUT DROP
Don't do it from an SSH session though. You will regret that if you don't have any prior rules to allow you back in.
Grant. . . .
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: block all trafic from input
2005-04-23 18:06 ` Taylor Grant
@ 2005-04-23 18:13 ` R. DuFresne
2005-04-24 12:44 ` Alistair Tonner
0 siblings, 1 reply; 5+ messages in thread
From: R. DuFresne @ 2005-04-23 18:13 UTC (permalink / raw)
To: Taylor Grant; +Cc: Kashif Ali Bukhari, netfilter
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Sat, 23 Apr 2005, Taylor Grant wrote:
>> iptables -P INPUT DROP
>
> Don't do it from an SSH session though. You will regret that if you don't
> have any prior rules to allow you back in.
>
Though it will prevent them from making any other mistakes that could be
catostrophic <smirk>!
Thanks,
Ron DuFresne
- --
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
admin & senior security consultant: sysinfo.com
http://sysinfo.com
Key fingerprint = 9401 4B13 B918 164C 647A E838 B2DF AFCC 94B0 6629
...We waste time looking for the perfect lover
instead of creating the perfect love.
-Tom Robbins <Still Life With Woodpecker>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFCapBEst+vzJSwZikRAj2vAKDGrxUf06QDfg/64v62vxnD7lU1DACgvXkj
yNtEYchcdSl/DZMGL6NBHX0=
=oWJ/
-----END PGP SIGNATURE-----
^ permalink raw reply [flat|nested] 5+ messages in thread* Re: block all trafic from input
2005-04-23 18:13 ` R. DuFresne
@ 2005-04-24 12:44 ` Alistair Tonner
0 siblings, 0 replies; 5+ messages in thread
From: Alistair Tonner @ 2005-04-24 12:44 UTC (permalink / raw)
To: netfilter
On April 23, 2005 02:13 pm, R. DuFresne wrote:
> On Sat, 23 Apr 2005, Taylor Grant wrote:
> >> iptables -P INPUT DROP
> >
> > Don't do it from an SSH session though. You will regret that if you
> > don't have any prior rules to allow you back in.
>
> Though it will prevent them from making any other mistakes that could be
> catostrophic <smirk>!
Ahh the glory of *nix:
Here is fully loaded, automatic weapon. Note that it is cocked and pointed
at yer foot.
*BANG*
What foot?
>
> Thanks,
>
> Ron DuFresne
^ permalink raw reply [flat|nested] 5+ messages in thread
end of thread, other threads:[~2005-04-24 12:44 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2005-04-23 10:24 block all trafic from input Kashif Ali Bukhari
2005-04-23 11:56 ` Eric Meris Vieira
2005-04-23 18:06 ` Taylor Grant
2005-04-23 18:13 ` R. DuFresne
2005-04-24 12:44 ` Alistair Tonner
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.