Security Basics mailing list archives
RE: iptables firewall
From: "Shawn Jackson" <sjackson () horizonusa com>
Date: Tue, 13 Jan 2004 17:39:46 -0800
Because iptables "netfilter' lives at the kernel level if it's disabled so is your server, kernel panic most likely. The easiest way to defeat a NAT filter is to plant a Trojan inside the network, seaming most people only filter the inbound traffic and not the outbound traffic. Run NESSUS against the server to find any 'gaping' vulnerabilities. We had some good discussions about IPTables a while back, check the archives and those should help out a fair amount. As always http://www.netfilter.org/ is your friend. Shawn Jackson Systems Administrator Horizon USA 1190 Trademark Dr #107 Reno NV 89521 www.horizonusa.com Email: sjackson () horizonusa com Phone: (775) 858-2338 (800) 325-1199 x338 -----Original Message----- From: Jorge Garcia [mailto:anarkophobia () linuxmail org] Sent: Monday, January 12, 2004 9:46 AM To: security-basics () securityfocus com Subject: iptables firewall hi, im trying to probe the security of my iptables firewall. i am focus in how u can avoid the filter, i mean if a port is filtered, i need to know how a hacker can defeat this. i think the hacker will try a denial of service to the firewall and desactivate it but im not sure. i need some links or info on how to do this and how to protect from it. thanks for everithing and sorry absout my english -- ______________________________________________ Check out the latest SMS services @ http://www.linuxmail.org This allows you to send and receive SMS through your mailbox. Powered by Outblaze ------------------------------------------------------------------------ --- Ethical Hacking at InfoSec Institute. Mention this ad and get $720 off any course! All of our class sizes are guaranteed to be 10 students or less. We provide Ethical Hacking, Advanced Ethical Hacking, Intrusion Prevention, and many other technical hands on courses. Visit us at http://www.infosecinstitute.com/securityfocus to get $720 off any course! ------------------------------------------------------------------------ ---- --------------------------------------------------------------------------- Ethical Hacking at InfoSec Institute. Mention this ad and get $720 off any course! All of our class sizes are guaranteed to be 10 students or less. We provide Ethical Hacking, Advanced Ethical Hacking, Intrusion Prevention, and many other technical hands on courses. Visit us at http://www.infosecinstitute.com/securityfocus to get $720 off any course! ----------------------------------------------------------------------------
Current thread:
- iptables firewall Jorge Garcia (Jan 12)
- <Possible follow-ups>
- RE: iptables firewall Shawn Jackson (Jan 14)