Quote:
Originally posted by Ciccio
I'm going to run an httpd (Last apache version) and a sendmail (last version also)... aside that It's a router for my home network and it has sshd running all the time...
I also wanted to use ssh from other locations, not just from my internal network... but I don't want ROOT to log in (in case there is some scanner/sniffer watching me). Also I wanted to completely avoid the use of telnet and set an FTP server but just 'sharing' /pub. and /home and I wanted to disable samba for internet but not for the internal network...
I think that covers it... I'm posting the configuration script of my firewall next.
|
Well you have a lot going on there. Heres my opinion(which is debatable).
First off if your not going to use a service then shut it off. I think everyone will agree on that.
If your going to use a service such as ssh for personal use only try to limit access to it. This can be done in a number of ways(i.e. firewall, tcpwrappers). You can disable root access to ssh in the /etc/ssh/sshd_config file(PermitRootLogin no)
Depending on what FTP program you are using, you will be able to edit the configuration file to specify what directory to use.
SAMBA can be limited to your network via tcpwrappers and a firewall.
Yeah um...thats it.