Re: [bitfolk] The perils of opening tcp/22 to the Internet

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
Mjohn lewis at <-
MNigel Rantor at ->

Reply to this message
Author: Graham Bleach
Date:  
To: users
Subject: Re: [bitfolk] The perils of opening tcp/22 to the Internet
On 15 March 2010 13:56, john lewis <zen57162@???> wrote:
> I did do 'iptables -L' to try to see if there was anything in the
> firewall rules blocking me and got
>
> Chain INPUT (policy ACCEPT)
> target     prot opt source               destination
>
> Chain FORWARD (policy ACCEPT)
> target     prot opt source               destination
>
> Chain OUTPUT (policy ACCEPT)
> target     prot opt source               destination
>
> which means nothing to me ;-(

It means you don't have any firewall rules, which is ill-advised on a
Internet-facing server.

There are heaps of guides to creating a firewall policy, my favourite
method at the moment is to use "ufw". It's in Debian as of squeeze.

Make sure you can access your VPS console before you start experimenting :)

G

This message was posted to the following mailing lists:
users
Mailing List Info | Nearby Messages		<-Re: [bitfolk] Remote syslog?Re: [bitfolk] The perils of opening tcp/22 to the Internet->
Bitfolk Mailing List Archive administrated by List AdminLurker (version 2.1)