LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 09-11-2006, 09:51 AM   #1
dapper128
LQ Newbie
 
Registered: Sep 2006
Posts: 5

Rep: Reputation: 0
firestarter launch at startup, ok?


fs-security.com/docs/faq.php
I followed the faq and it works, firestarter goes to systray on startup.

added to /etc/sudoers
# Members of the admin group may gain root privileges
%admin ALL=(ALL) ALL
username ALL= NOPASSWD: /usr/sbin/firestarter

added to Startup programs
sudo firestarter --start-hidden

I just want to be sure, that I understand it correctly.
Hope it's ok to ask, but kind of a dumb place to make a mistake.
This is only a local security risk?

Ubuntu Dapper
 
Old 09-11-2006, 10:14 AM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985
be aware why you are doing this in the first place... firestarter is NOT a firewall, it's a firewall configuration and monitoring tool. as long as iptables is loading on boot the firewall configuration that firestarter created will be successfully loading. you do not need to load this to be protected.
 
Old 09-11-2006, 11:15 AM   #3
dapper128
LQ Newbie
 
Registered: Sep 2006
Posts: 5

Original Poster
Rep: Reputation: 0
Ok, thank you.

I got a second question, related to nmap.

I am trying nmap. I don't know a lot about it and need to read some.

I am using this command-
Code:
nmap -sS -P0 -p 1-65535 localhost
Can I do this to scan locally? Will it give the same output as if I made a remote scan?

Code:
Starting Nmap 4.11 (insecure.org/nmap/ ) at 2006-09-11 18:03 CEST
Interesting ports on localhost.localdomain (127.0.0.1):
Not shown: 65530 closed ports
PORT      STATE SERVICE
80/tcp    open  http
631/tcp   open  ipp
8118/tcp  open  unknown
40343/tcp open  unknown
60846/tcp open  unknown
This is the output I get.

I understand 80, goggle told me that 631 ipp is printer related. 8118 is for proxy as fare as I know.
The last two I really don't get?

Is a local scan any good?
If there's any problem with any of these ports being open, how do I close them?
 
Old 09-11-2006, 02:06 PM   #4
dapper128
LQ Newbie
 
Registered: Sep 2006
Posts: 5

Original Poster
Rep: Reputation: 0
I can't do a port scan from sysgate or grc, because I am behind a firewall provided by ISP. I can access it to configure, but I can't turn it of. At the same time, I am on a LAN with the rest of the people in the building. So we are advised to use a software firewall.

I understand that firestarter is just a easy (which is good) GUI for the iptables.
I would just like to test it.
 
Old 09-11-2006, 03:58 PM   #5
dapper128
LQ Newbie
 
Registered: Sep 2006
Posts: 5

Original Poster
Rep: Reputation: 0
So I managed to do a remote scan, with the help of a friends laptop.

Code:
nmap -T Aggressive -P0 -sT -r -O -p 1-65535
Code:
Starting Nmap 4.11 ( http://www.insecure.org/nmap ) at 2006-09-11 21:56
Warning:  OS detection will be MUCH less reliable because we did not find at lea
st 1 open and 1 closed TCP port
Insufficient responses for TCP sequencing (0), OS detection may be less accurate

Insufficient responses for TCP sequencing (0), OS detection may be less accurate

Insufficient responses for TCP sequencing (0), OS detection may be less accurate

Interesting ports on:
Not shown: 65532 filtered ports
PORT    STATE SERVICE
21/tcp  open  ftp
25/tcp  open  smtp
110/tcp open  pop3

Too many fingerprints match this host to give specific OS details

Nmap finished: 1 IP address (1 host up) scanned in 2872.511 seconds
How would I close those posts if I wanted to?

ps
I know how to edit, but since it's new info, I am guessing it's ok.

edit
http://iptables-tutorial.frozentux.n...-tutorial.html
god more then I really want to know ill have a look at it.

If I don't use ftp, should I just not close the port?
Or does it matter at all?

Last edited by dapper128; 09-11-2006 at 04:54 PM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
firestarter at startup- Ubuntu aquaboot Linux - Software 0 03-25-2006 04:23 PM
Howto launch script at startup sendas4 Linux - Newbie 2 03-10-2005 10:51 AM
Have Firefox Launch X on startup Johnathan4 Linux - Software 1 02-12-2005 10:02 AM
firestarter load on startup/system tray zombie_wolf Linux - Security 1 05-08-2004 04:44 AM
newbie ?, firestarter firewall startup north49er Slackware 2 05-10-2003 05:27 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 01:42 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration