Hello,
About firewalls... I've been playing around with my firewall for some time. I'm using Mandrake 9.1, and previously I've used shorewall which is included in the distro. After some reading, I set up iptables by myself and shut shorewall off (but activated iptables, of course). Unfortunately I haven't scanned my computer from the outside with
nmap as root yet (so I can only do some rather inefficient scans, such as the TCP connect and ping scans) but I'm invisible in the scans that one can do at
scan.sygate.com and
grc.com, and that is really nice.
The rules I've set up for iptables are a mix of the ones that Brian Hatch writes about in his article(s)
Ten minute host firewall (
here and
here) and the ones that
quicktables set up for me. In addition, I've changed the settings in some firewall-related /proc entries, which one can read about
here and
here.
(Well, I guess I don't have to think very hard, since my box isn't working as a server. I only allow incoming ssh request from two machines, and I have also changed the port on which the ssh daemon listens to from the standard port 22.)