Mailing List Archive
Support open source code!
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: canna port security
- To: tlug@example.com
- Subject: Re: canna port security
- From: Marc Christensen <marc@example.com>
- Date: Tue, 22 May 2001 06:54:38 -0600 (MDT)
- Content-Type: TEXT/PLAIN; charset=US-ASCII
- In-Reply-To: <20010522180329.K933@example.com>
- Reply-To: tlug@example.com
- Resent-From: tlug@example.com
- Resent-Message-ID: <dgUInC.A.6YH.jHmC7@example.com>
- Resent-Sender: tlug-request@example.com
[snip] > > Thanks, John. > > I'd already tried that and still the port is open. > There was no /etc/hosts.cannna file so I created one. No joy though. > > I get this from cshost: > > Connected to unix > access control enabled > HOST NAME:localhost > ALL USER > > HOST NAME:unix > ALL USER > > but nmap still shows the port open on 5680 The port is still open because the canna service is doin it's own security which means that it must be able to connect to an incoming request, determin if it is allowed then either drop the connection or continue according to it's rules. If you want it to be invisible to the outside world, then you should set up a firewall rule which would be kernel level instead of application level security. In that case, you can foget about setting up the security for canna in specific as the firewall rule and the canna rule would be redundant. -- Marc C. http://www.mecworks.com
- Follow-Ups:
- Re: canna port security
- From: Jonathan Q <jq@example.com>
- Re: canna port security
- References:
- Re: canna port security
- From: Joss Winn <joss@example.com>
- Re: canna port security
- Prev by Date: Re: Web forms and Japanese
- Next by Date: Re: canna port security
- Prev by thread: Re: canna port security
- Next by thread: Re: canna port security
- Index(es):
| Home Page | Mailing List | Linux and Japan | TLUG Members | Links |