RE: closing ports, close them al

["Burnes, James" <james.burnes () gwl com>]

Christ-Henning:
 
In order this is what you should do:
 
1.      If you are currently connected to the Internet and don't have any
users who will lose their lives if you disconnect, calmly walk over to your
router's DSL or Cable connection and disconnect it.  You don't know enough
about security to be on the net yet.
2.      Regarding the ports on your firewall.  "Close them.  Close them
all!"
3.      Only open the ports you absolutely need.  Do not let anyone initiate
connections from the outside.  You don't know enough to do that safely yet.
4.      Read an introductory book on firewalling.  I'm sure everyone on this
list has their favorite.  Check out Amazon.
5.      If you want an excellent and free firewall, install OpenBSD with pf.
You will learn some UNIX and that can't be bad.  With luck you will enjoy
this and possibly have a lucrative future in the security industry.
6.      Go out to O'Reilly's site and read the excellent and free four-part
series on securing small networks with OpenBSD and 'pf' by Jaycek Artymiak:
http://www.oreillynet.com/pub/au/832 <http://www.oreillynet.com/pub/au/832> 
7.      Read everything you can on UNIX, as much as you can handle of Win2K,
learn to program, write some shell scripts.
8.      If you want some official training, attend a SANS conference if they
exist in Europe.
9.      Welcome to Security 101
 
 
Jim Burnes
Security Engineer
Great-West, Denver
 
-----Original Message-----
From: Christ-Henning Ljosheim [mailto:chris () megasat no] 
Sent: Friday, November 07, 2003 1:51 AM
To: full-disclosure () lists netsys com
Subject: [Full-disclosure] closing ports
 
 
Hi 
I am new in this group (from Norway)
Do you have any tips for which ports I should close to held my network clean
for intruders ?
I've closed port 1214 and 6881 to 6889 . Anyone else I should close ?
 
Chris