LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 05-17-2007, 03:42 AM   #1
GothManiac
Member
 
Registered: Mar 2007
Posts: 45

Rep: Reputation: 15
Firewall and YAST/Suse10.1


Got the following message when running GRC.com's firewall checker. Any idea how to set up my firewall to drop instead of reject? I'm running Suse 10.1 I don't find anything in YAST for setting up the firewall or changing anything, just turning it on or iff.

"Unsolicited Packets: RECEIVED (FAILED) — Your system's personal security countermeasures unwisely attempted to probe us in response to our probes. While some users believe that "tracking down" the source of Internet probes is useful, experience indicates that there is little to gain and potentially much to lose. The wisest course of action is to simulate nonexistence — which your system has failed to do. Your counter-probes immediately reveal your system's presence and location on the Internet."
 
Old 05-17-2007, 01:04 PM   #2
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 380Reputation: 380Reputation: 380Reputation: 380
you can change your INPUT policy from REJECT to DROP like:
Code:
iptables -P INPUT DROP
keep in mind that you might instead be filtering with a REJECT rule (instead of a policy), and in such a case you'd need to change the rule, or get rid of it and use the policy... having said that, are you sure this is what they mean with counter-probes?? cuz the way they write it it sounds like your box did a port scan of theirs or something... anyhow, just wondering...
 
Old 07-18-2007, 01:30 AM   #3
GothManiac
Member
 
Registered: Mar 2007
Posts: 45

Original Poster
Rep: Reputation: 15
Not sure what they mean. Also not sure which rule to change the reject to drop for.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
suse10.2 50% slower than suse10.0 running Maven - The java build manager. bagpussnz SUSE / openSUSE 0 04-11-2007 09:54 PM
Apache2 installation with Yast on Suse10.0 CGI problems DLHOMME SUSE / openSUSE 0 05-20-2006 09:20 AM
YaST Firewall & X-server access for SuSE 10.0 WebDrake Linux - Security 0 12-16-2005 04:06 PM
firewall with Yast and suse 9.x Kumado Linux - Networking 1 06-21-2005 09:08 AM
Configuring proxy settings for yast update behind a firewall fintan SUSE / openSUSE 2 02-05-2005 01:01 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 09:31 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration