Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Ok, here you go. This my output of DEFAULT iptables -L in SUSE Linux 9.3. I just want to know if its doing a STATEFUL PACKET INSPECTION firewalling. Thats it. If it does, then I will stick to this one. Check it out below.
Ok, here you go. This my output of DEFAULT iptables -L in SUSE Linux 9.3. I just want to know if its doing a STATEFUL PACKET INSPECTION firewalling. Thats it. If it does, then I will stick to this one. Check it out below. Please tell me if this script is doing STATEFUL PACKET INSPECTION. And if does do SPI, then how would I tell?
I demand an reponse within hours.
Sweet! I want to demand stuff too.. I demand a pet monkey with a red beanie, no wait, I demand a jet pack. Yes, a jet pack will be rather acceptable, thanks
I know, but now Im not using Mandrake anymore. And plus, this is a different script that came as default in SUSE.
All Im asking is a simple NO and YES answer. What is so secretive about saying YES or NO???
Also, how can I tell if its doing SPI? This is important to know because thats what I want for a firewall. And this script will go into my dial-up machine.
I know you guys are ignoring me on purpose and THATS UTTERLY UTTERLY dispectable and rude.
I EXPECT AN A RESPONSE OR ELSE I WILL SETTLE THIS WITH THE MASTER MODERATOR. UNDERSTAND? HOPE SO...OH, AND TO ALSO MENTION THAT ITS VERY DISCRIMINATING!!!!!!!
Originally posted by wardialer I know you guys are ignoring me on purpose and THATS UTTERLY UTTERLY dispectable and rude.
I EXPECT AN A RESPONSE OR ELSE I WILL SETTLE THIS WITH THE MASTER MODERATOR. UNDERSTAND? HOPE SO...OH, AND TO ALSO MENTION THAT ITS VERY DISCRIMINATING!!!!!!!
YES!
DON'T BE A JERK... You must respect to deserve respect... and I don't see any of that happening on your end. Who is discriminating? And how?! I'm sorry if you aren't the most important person in the world, but we're all trying to get things done in this world, and you should probably chill for a little bit and give people some time to answer you, without being rude yourself and demanding answers.
Ask yourself this. If someone asked you in such a rude fashion, would you respond? If you answer yes... then you are a liar. Granted, computer people don't have the best of social skills, but a little respect goes a long way.
Now, it seems like you use this tactic to get people to answer your posts. A lot of people on this board have some major skills to make your life a miserable hell if you piss off the wrong person... so let's recap:
The things that bothers me is that I signed up for this forum to get intelligent repsonses. BUT NO....I hate when people on here dont tell the truth. Meaning, is if you dont like Linux or SUSE isn't your fav distro, then please be honest. Please....It will be fine for me if someone says or admits that they dont know. BUT PLEASE, I RESPECT AN ANSWER EVEN IF SOMEONE DOES NOT KNOW. Thats it... Thats all I want.
It looks like not everyone likes to work with Linux or SUSE, like I said, thats fine, but be honest or tell me if thats the case here. But please do not IGNORE my questions just like this. It drives me up the wall.
I But dont take it the wrong way here. I am just angry the way Linux is-which means FRUSTERATING and yes I have a hard time master minding it.
Now, my goal is to make Linux as secure as OpenBSD. Is this possible? And my main question, SuSEfirewall has its own built-in iptables or ipchains script and I got this script by doing iptables -L.
Question is, is doing SPI? Also, this for my dial-up machine which has very crucial data in it. Should this firewall script be secure enough and (one more time) does it do SPI? And MOST IMPORTANTLY, can this iptables script stealth ALL OF MY PORTS like my Linksys router can do or not?
SPI for me, is very very important. Like someone said, its even better than NAT.
I would appreciate it and please except my appologies. Remember, its NOT YOU, its the frusterating aspects of Linux which will never die.
But remember if you guys DO NOT KNOW the answer or do not like working with Linux then please be tell me rather than just to ignore my questions...
The things that bothers me is that I signed up for this forum to get intelligent repsonses. BUT NO....I hate when people on here dont tell the truth. Meaning, is if you dont like Linux or SUSE isn't your fav distro, then please be honest. Please....It will be fine for me if someone says or admits that they dont know. BUT PLEASE, I RESPECT AN ANSWER EVEN IF SOMEONE DOES NOT KNOW. Thats it... Thats all I want.
It looks like not everyone likes to work with Linux or SUSE, like I said, thats fine, but be honest or tell me if thats the case here. But please do not IGNORE my questions just like this. It drives me up the wall.
I But dont take it the wrong way here. I am just angry the way Linux is-which means FRUSTERATING and yes I have a hard time master minding it.
Now, my goal is to make Linux as secure as OpenBSD. Is this possible? And my main question, SuSEfirewall has its own built-in iptables or ipchains script and I got this script by doing iptables -L.
Question is, is doing SPI? Also, this for my dial-up machine which has very crucial data in it. Should this firewall script be secure enough and (one more time) does it do SPI? And MOST IMPORTANTLY, can this iptables script stealth ALL OF MY PORTS like my Linksys router can do or not?
SPI for me, is very very important. Like someone said, its even better than NAT.
I would appreciate it and please except my appologies. Remember, its NOT YOU, its the frusterating aspects of Linux which will never die.
But remember if you guys DO NOT KNOW the answer or do not like working with Linux then please be tell me rather than just to ignore my questions...
Thank you.
Not my intentions to start a flame war, but you're already starting one by reading way into what is going on here. I've been a member of this forum on and off for over three years, and not once have I seen answers being discriminated against because of the particular distro. There are subtle differences, but the people on this list are pretty knowledgable.
If you have an overall goal, why don't you share this rightout, instead of throwing out little tidbits and screaming at people when they don't answer.
Just don't rant at people. Oftentimes an ignored question oftentimes represents one of two things:
1) It's been answered, please find it
2) They don't know.
So don't then scream at people when nobody answers. I'm just saying that you can't control people, but you're definately not going to win friends by being a jerk.
Now, say what you will in response, but I refuse to turn this into a flame thread. Good luck to you, and try and learn some netiquette. Good luck.
I upgraded to SUSE. And I see that SUSE Firewall2 has this script by default. I would like to know if the SUSE Firewall is an iptables (SPI firewall) or an ipchains firewall?
Thats all.
Because I do not like ipchains type script. But one thing that concerns me is that I see this below.
Originally posted by wardialer PEOPLE ON THIS LAME *** FORUM ARE NOT SOOOOOO INTELIGENT BECAUSE MY QUESTION WOULD OF BEEN ANSWERED BY NOW.
That or they don't appreciate your attitude. Everyone here is an unpaid volunteer who use some of their free time to help out others, not paid tech support. So demanding answers, using profanity, and calling LQ a "lame" place is not going to make others want to help you. You've been repeatedly warned about your behaviour, so let me make this completely clear to you: If you continue to act in an unacceptable manner, you will be banned. If you want to demand answers, pay for SuSE tech support and demand all you want, but that attitude is not "ok" here. I do realize that Linux can be frustrating at times, however the members of this forum live in different time zones and have jobs/families/both, so try to be patient...
Until I get an response, Im going to bump this post unitl I do so. Im not kicked out so far so I guess its OK.
No it's not. See our rules and the above statements.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.