Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

RE: iptables firewall

From: "Shawn Jackson" <sjackson () horizonusa com>
Date: Tue, 13 Jan 2004 17:39:46 -0800

        Because iptables "netfilter' lives at the kernel level if it's
disabled so is your server, kernel panic most likely. The easiest way to
defeat a NAT filter is to plant a Trojan inside the network, seaming
most people only filter the inbound traffic and not the outbound
traffic. Run NESSUS against the server to find any 'gaping'
vulnerabilities. We had some good discussions about IPTables a while
back, check the archives and those should help out a fair amount. As
always http://www.netfilter.org/ is your friend.

Shawn Jackson
Systems Administrator
Horizon USA
1190 Trademark Dr #107
Reno NV 89521
www.horizonusa.com
 
Email: sjackson () horizonusa com
Phone: (775) 858-2338
       (800) 325-1199 x338

-----Original Message-----
From: Jorge Garcia [mailto:anarkophobia () linuxmail org] 
Sent: Monday, January 12, 2004 9:46 AM
To: security-basics () securityfocus com
Subject: iptables firewall

hi, im trying to probe the security of my iptables firewall.
i am focus in how u can avoid the filter, i mean if a port is filtered,
i need to know how a hacker can defeat this.
i think the hacker will try a denial of service to the firewall and
desactivate it but im not sure.
i need some links or info on how to do this and how to protect from it.
thanks for everithing and sorry absout my english
-- 
______________________________________________
Check out the latest SMS services @ http://www.linuxmail.org 
This allows you to send and receive SMS through your mailbox.


Powered by Outblaze

------------------------------------------------------------------------
---
Ethical Hacking at InfoSec Institute. Mention this ad and get $720 off
any 
course! All of our class sizes are guaranteed to be 10 students or less.

We provide Ethical Hacking, Advanced Ethical Hacking, Intrusion
Prevention, 
and many other technical hands on courses. 
Visit us at http://www.infosecinstitute.com/securityfocus to get $720
off 
any course!  
------------------------------------------------------------------------
----


---------------------------------------------------------------------------
Ethical Hacking at InfoSec Institute. Mention this ad and get $720 off any
course! All of our class sizes are guaranteed to be 10 students or less.
We provide Ethical Hacking, Advanced Ethical Hacking, Intrusion Prevention,
and many other technical hands on courses.
Visit us at http://www.infosecinstitute.com/securityfocus to get $720 off
any course!
----------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: