Ok, my redhat system that will be my router and other *box (cd buning,
cd ripping, running a web server for internal net, etc) is almost ready for
the cable modem (I don't have it yet). Here are the ports I have open:
Port State Service
21/tcp open ftp
22/tcp open ssh
80/tcp open http
ssh is the only one I want open to the outside. My /etc/hosts.deny is:
strider is my SuSE box (I name my boxes after Tolkien characters).
In my /etc/ftphosts:
allow mik strider
deny mik 0.0.0.0/32 <- denies mik from anywhere?
In my /etc/ftpusers, there is every user but mik.
In my httpd.conf, in <Directory "/var/www/html"> there is:
Allow from strider
And on top of that, I use iptables to filter out incoming traffic on ports
21 and 80.
Can anyone see any obvoius holes in this, and anything else I can add???
Also, I need "security auditing software", or just tools script kiddies use
to break in. All my passwords are secure (long and uppercase, lowercase,
numbers and symbols). Ok that's all I can think to do... Any help here...
- Mik Mifflin