OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: Nix (susenix.hispeed.com)
Date: Sun Jan 21 2001 - 07:24:14 CST

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    At 01:49 PM 19/01/2001 +0200, you wrote:
    >Hi All
    >
    >What are the best options for filtering incoming Packets on the SMTP port
    >with IPCHAINS (I know they are limited) , but still allowing the service to
    >receive mail. Postfix is my MTA.

    IPCHAINS is NOT an application level firewall, and as such does not understand
    the SMTP protocol. You either allow port 25 or you don't, you can
    enable/disable
    certain commands like Gauntlet Firewall can for instance.
    I was talking to Rusty (the Ipchains/netfilter programer) about this
    yesterday, and
    he is thinking of writing for application level stuff for netfilter, but it
    has not been done
    yet...

    Hope that Helps 

    ---
Nix - nixsusesecurity.com
SuSE-Security FAQ Maintainer
http://www.susesecurity.com

    ---------------------------------------------------------------------
To unsubscribe, e-mail: suse-security-unsubscribesuse.com
For additional commands, e-mail: suse-security-helpsuse.com