[Gllug] NFS and Firewalls

Ian Norton bredroll at darkspace.org.uk
Thu Mar 3 00:04:35 UTC 2005


Hi Nick,

There is another post I just read that explains it all indepth,

basically, when your system starts up, it runs initially as the root user with
100% access to everywhere,

init runs the startup scripts that start things like ssh, samba, apache and
things like that, it also starts the graphical login system you probably use.

root never 'logs out', linux is a 100% multiuser system, anyone with the
correct access can login to your computer at the same time as you (securely of
course)

my advice is dont try to firewall your linux pcs against your other ones in the
same physical LAN. if you want to be safe, dont use telnet or ftp, use ssh.

unlike windows, if you never ever firewall your linux desktop, you are still
pretty unlikley (95%) to get any problems as a result.

im curious as to what is hosting your home directory, is it a mac? another
linux machine? 

regards

Ian


On Fri, Feb 11, 2005 at 08:17:53PM +0000, Mick Farmer wrote:
> Dear GLLUGers,
> 
> I'm attempting to harden my computer's firewall using
> iptables.  I'm encountering a problem because I use NFS to
> access my home directory and I don't know what
> protocol/ports are used.  The scenario goes like this.
> 
> * Linux boots
> * Root login
> * Root mounts my home directory <== this os where I need advice
> * Root logs out
> * I login
> 
> Regards,
> 
> Mick               /"\                      
>                    \ /                      
> Linux Registered    X  ASCII Ribbon Campaign
> User #287765       / \ Against HTML Mail
> -- 
> Gllug mailing list  -  Gllug at gllug.org.uk
> http://lists.gllug.org.uk/mailman/listinfo/gllug

-- 
Ian Norton-Badrul

-- 
Gllug mailing list  -  Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug




More information about the GLLUG mailing list