Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest
Anti-Virus And Firewall Suggestions
-
27-02-2004 12:50pm#1
Comments
-
-
-
-
-
-
Advertisement
-
These appear to be sorted in the latest stable and the cvs as well, I run a BBS/Fidonet system and most files are zipsOriginally posted by blacknight
ClamAv isn't bad, but it has issues with zip files at times
SeanJoin Ireland Weather Network
0 -
Id reccomend just running a simple firewall and maybe somthing like qmail scanner http://qmail-scanner.sourceforge.net/ for e-mail, but tbh you prolly dont even need that.
for a firewall, you need to build netfilter in the kernel as leeroybrown was saying, just go to the kernel config and build in all of netfilter, if something fails just remove what failed and try again, but it should be fine.
this is the firewall im using atm so it like accepts all outbound connections from internal ips assuming that you have eth0 internal and ppp0 to the interweb, and implements ip forwarding and a couple of other little trimmies. Very simple, should be easy to edit, i wouldnt use it in a professional enviornment though, lol.
#nadir's funky firewall thingie
modprobe ip_nat_irc
#set vars
#UNPRIVPORTS="30000:35000" # unprivileged port range
# Remove any existing rules from all chains
iptables -F INPUT
iptables -F OUTPUT
iptables -F FORWARD
iptables -t nat -F PREROUTING
iptables -t nat -F POSTROUTING
iptables -t mangle -F OUTPUT
#block all incoming ppp0 connections
iptables -A INPUT -d 10.0.0.0/8 -i ppp0 -j DROP
iptables -A INPUT -m state --state NEW,INVALID -i ppp0 -j DROP
#iptables -A INPUT -m state --state ! INVALID -j INCOMING
iptables -A INPUT -p tcp --syn -i ppp0 -j DROP
#allow for existing connections from eth0 <-> ppp0
iptables -A FORWARD -i eth0 -o ppp0 -m state --state ESTABLISHED,RELATED -j ACC
PT
iptables -A FORWARD -i eth0 -o ppp0 -j ACCEPT
#additional rules for services, DNS .etc
iptables -I INPUT 1 -p tcp -m multiport --dport 21,22,113,139,445 -j ACCEPT
iptables -I INPUT 1 -p udp -m multiport --dport 53,137,138, -j ACCEPT
iptables -I INPUT 1 -p tcp -m multiport --sport 53 -j ACCEPT
iptables -I INPUT 1 -p udp -m multiport --sport 53 -j ACCEPT
iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE
#enable forwarding
echo 1 > /proc/sys/net/ipv4/ip_forward
# to list nat-iptable:: iptables -t nat -nL
echo "initializing firewall rule set"
#echo "
Rules are
"
#list rules
iptables -t nat -nL
iptables --list0 -
-
f-prot is easy to setup, just make a cron job with whatever command you want to run, something like this
f-prot / -append -packed -wrap -report=/var/log/virus-report.log
Thats scans everything "/" you can set it to whereevr u want and have the log to wherever to
using mandrake just go as root $urpmi f-prot
thatll download and install it 0
Advertisement