[CLUE-Tech] AT&T@home and Linux Network

Cyberclops Cyberclops at hawaii.rr.com
Wed May 9 18:48:45 MDT 2001 

In Hawaii my Linux HD when tested against Shields up reported out as
completely stealth, but now connected via modem to Techangle in Denver,
I get a report that the FTP port is open.  To the best of my knowledge I
have it shut off in the "inetd" file."  Any suggestions?

Tim Russell wrote:
> 
> Yep - you can specify individual TCP and UDP ports to be sent to
> internal clients, as well as one internal machine to be a "DMZ" machine
> - this isn't documented too well, and I haven't experimented much with
> it yet, but I suspect the box just forwards anything it doesn't have a
> specific rule for to the given machine and sees if it answers.
> 
> I agree, if you have an old machine laying around and want to play with
> it and leave it up 24/7, Linux is great and you'll learn a lot.  But for
> a novice (and no offense, but asking the previous question would qualify
> someone as a novice in my book, nothing wrong at all with that!) the
> Linksys boxes, at less than $100 and using less power, as well as being
> more secure if the Linux box isn't set up properly, fit the bill too.
> 
> I'd certainly never discourage anyone from setting up a Linux box to do
> the job, because they'll learn a lot and it will be rewarding, as well
> as quite a bit more flexible than an appliance.  But on the other hand,
> we've all seen the dark side of misconfigured Linux machines hanging off
> @Home connections (as well as Wingate machines!).  Red Hat has helped a
> lot with 7.1 being TONS more secure by default, thankfully.  That was a
> major pet peeve of mine with previous versions.  I think for some people
> playing with the Linux machine on the inside network is a better idea.
> There's still plenty to learn!
> 
> Tim
> 
> > -----Original Message-----
> > From: Joshua M. McClain [mailto:tartan at mindspring.com]
> > Sent: Wednesday, May 09, 2001 15:32
> > To: clue-tech at clue.denver.co.us
> > Subject: Re: [CLUE-Tech] AT&T at home and Linux Network
> >
> >
> > Tim, can the Linksys box provide port redirection from
> > external sources to
> > internal clients?  I know the D-Link does, and quite well.
> > But if there's
> > an old 486 lying around, why spend the coin on a new box?,
> > when ipchains
> > should be more than anyone should ever need at home.  Plus,
> > the experience
> > of running a firewall.  My $0.02.
> >
> > You are correct, though -- a small appliance would consume
> > less juice (and
> > generate much less heat) than another computer.
> >
> > Josh McClain
> > 92 ST185
> > 88 ST162
> > 95 VZN130
> > Bailey, CO
> > tartan at mindspring.com
> >
> > > If you leave your Linux box on all the time, this works
> > great, after you
> > > do some setup.  If you want something a bit less
> > power-hungry you might
> > > consider a Linksys or similar firewall appliance.  I have one with a
> > > built-in Wireless Access Point and it works very well and
> > includes the
> > > DHCP server.
> >
> >
> > _______________________________________________
> > CLUE-Tech mailing list
> > CLUE-Tech at clue.denver.co.us
> > http://clue.denver.co.us/mailman/listinfo/clue-tech
> >
> _______________________________________________
> CLUE-Tech mailing list
> CLUE-Tech at clue.denver.co.us
> http://clue.denver.co.us/mailman/listinfo/clue-tech

More information about the clue-tech mailing list