Ubuntu :: Close All Ports Except Port 80 - Secure HTML And Webmail
May 17, 2010
I downloaded IPKungFu which is supposed to do this for me, except it did not according to a penetration site. configure IPKungFu perfectly. I did look at this site. IPKungFu easy iptables based server firewall - zarzax the blog I downloaded IPKungFu which is supposed to do this for me, except it did not according to a penetration site. Help me configure IPKungFu perfectly. I did look at this site. IPKungFu easy iptables based server firewall - zarzax the blog
Results
rv @rv-laptop:~$ sudo ipkungfu
Checking integrity: ..PASSED
Checking MD5 Hash of config files:OK
[code]....
View 2 Replies
ADVERTISEMENT
Jan 17, 2016
I scanned my newly installed Debian 8 and found that i have two ports open.
22 for ssh which i want
111 can i safely close port 111 and how?
View 3 Replies
View Related
Apr 11, 2010
When you set up a webmail solution these days, either on your home LAN or at a small business. What steps do you take to make the solution as secure as possible? A couple of years ago it was sufficient to port forward both port 25 and 80/443 to you server located on the internal LAN. Today you're more likely to have a SMTP relay in a DMZ of some kind. But the webmail, how do you solve this? Do you place a dedicated webmail frontend in the DMZ and open ports towards the internal LAN, or do you just place the entire server in the DMZ? I'm looking for input for a small network/home LAN so it shouldn't be to complex.
View 4 Replies
View Related
Oct 7, 2010
I have successfully configured a local imap mail server following these instructions: url
Now I would like to make it available via webmail too.Is there an easy to install and configure webmail package?
View 1 Replies
View Related
May 8, 2010
how can i close all of ports and open ssh only?
View 6 Replies
View Related
Apr 11, 2011
I was port scanning my computer and i found some open ports. How would i close these ports so they cannot be remote accessed?
View 1 Replies
View Related
Nov 24, 2010
I am using squid proxy in my office , now I can not access the webmail url is url.
View 5 Replies
View Related
Oct 20, 2015
I have installed Debian Jessie (<-- brilliant OS ) on my uncles Laptop (it is a Thinkpad E540) with Cinnamon as desktop environment. The installation was no problem. Everything apart from one minor thing works nicely. The minor thing however is the following:
I don't know what it is, but when I don't use a particular usb port for a while and then try to plug in a usb stick or a wacom tablet, it doesn't get recognized, it doesn't show up when I use f.e. Code: Select alllsusb. When I close the lid of the laptop and open it again, then the particular usb device gets recognized and cinnamon asks me what to do, f.e. open a folder and show the content of the usb stick I have plugged in. Because of the success on two other laptops I use the following
Code: Select all# /etc/systemd/system/powertop.service
[Unit]
Description=Powertop tunings
[Service]
Type=oneshot
RemainAfterExit=no
ExecStart=/usr/sbin/powertop --auto-tune
Environment="TERM=xterm"
[Install]
WantedBy=multi-user.target
to save power on the Thinkpad (this is in no way my service script, I tuned everything using powertop in the terminal after having had logged in, the script above stems from a brilliant user here on the forum). Could it therefore be autosuspend that is not working properly here?
View 3 Replies
View Related
Dec 8, 2009
have tried to close ports 443,80,22 & 23 without success.Does anybody have any idea how to do this. I close them in a terminal and their still opened. I closed them in services and their still open what am I not doing right?
View 14 Replies
View Related
May 26, 2011
I'd like to set up a fileserver for myself and a few trusted individuals. I'm computer savvy and I use various linux servers frequently for work, but this is my first time trying to setup my own. Is it possible to have a Samba server setup so it is both secure and facing the Internet? Two questions:
Will opening Samba ports make my default Ubuntu server particularly vulnerable to penetration? More than having an SSH server running? Does Samba/ can Samba be configured to encrypt traffic or is it sent plainly? If so, does Windows and Mac support this secure communication?
If not, what would you suggest? I'd like to achieve something like a network drive and at a difficulty level that my parents could use this if they really wanted to. I will be storing things like financial information and tax returns, but no weapons-grade secrets.
View 9 Replies
View Related
Jul 7, 2010
I know that ports are, by default, not filtered; they simply don't respond to requests if there are no services listening on the port. Well, running netstat -tulpn gives:
Code:
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN -
[code]....
View 3 Replies
View Related
Oct 16, 2009
Jst to tryout ufw I tried to close port 80 on my pc. I'm using Ubunutu 9.04. I sudo ufw enable sudo ufw deny 80. But nmap localhost shows port 80 open why? How can I close it? I will need to control some ports on my next server.
View 2 Replies
View Related
Dec 19, 2010
I've recently been taking a look at my router settings and I've realized i have my vnc port open for some reason. I don't know how or why it got opened because I've only used vnc within my private lan. Anyway, the problem is I couldn't figure out how to close that port on my router, so I just uninstalled all the vnc software from my computer so it wouldn't act like a vnc server for anybody trying to access it from the outside. So, effectively, I cannot vnc into my computer from outside my private lan, but when i port scan my public ip, the vnc port still appears open.
I'm wondering if there's something i'm missing. I'm sure it must be something in the router that I haven't figured out... something that's keeping port 5900 open.
View 6 Replies
View Related
Mar 12, 2011
I would like to Close/Open port 21 using command line. I have an FTP server and I don't want to have the port open all the time. I need only two hours by week to be open port 21 from outside to inside.So I need to know the command line for opening and closing the port 21 then I will implement this in a script into cron.hourly.
View 2 Replies
View Related
Oct 16, 2010
how exactly would you open a port and point it to an html page, like port 80 does by default?
Example: Port 2985 -> ./var/www/login/index.php
View 5 Replies
View Related
Apr 14, 2010
i want to secure the USB port by any external device connection. so i need the code of detection of an external device when plugged in the USB port.
View 1 Replies
View Related
Apr 13, 2010
hi i want to lock my usb port of system.i am using linux fedora 11 operating system. so for that purpose i want to know or i want the detection code that detect any external devices plug in to system.
View 8 Replies
View Related
Apr 16, 2011
The server I'm running is virtually stock CentOS - it's running on a xen virtual host, started as CentOS 5.1 (32 bit) when that was fresh, it's at 5.5 now and updated nightly. All packages except postgresql and php are from CentOS and EPEL.
I'm running dovecot on it, and for long time, squirrelmail connecting via localhost was good enough. All external ports were firewalled by the CentOS firewall (just 25,80,443,custom ssh are currently open).
Now I need to allow an external imap client to connect.
I have generated ssl key and configured the dovecot configuration and it should be good to go, but gosh dangit, I can't remember how to open the port in the configuration.
I did it before when I set up ssh to run on a non standard port after I got sick of constant brute force attack on port 22, but I can't recall what I did and the various tutorials I find online all tell how to do it with the GUI tool, but I don't have any GUI stuff installed.
system-config-securitylevel-tui
Is I'm pretty sure what I used to open up my custom > 1024 ssh port, but I can't remember how I used it to open that port and it doesn't seem intuitive. Also, do I need to use 993? I'd almost rather use something custom above 1024, as long as thunderbird supports it (don't care about any other mail client)
Finally, my smtp server is postfix and port 25 is already open (but not an open relay, I check it about every 3 months). For requests to send mail from a client, I would really like some authentication of some type - as in only relays for IP addresses that have recently successfully logged in the secure imap port.
View 3 Replies
View Related
Aug 23, 2011
I'm running Ubuntu 10.4 and I've tried disabling IPv6 as I don't currently need it. I rand the following to disable IPv6 and then rebooted my server:
echo "#disable ipv6" | sudo tee -a /etc/sysctl.conf
echo "net.ipv6.conf.all.disable_ipv6 = 1" | sudo tee -a /etc/sysctl.conf
echo "net.ipv6.conf.default.disable_ipv6 = 1" | sudo tee -a /etc/sysctl.conf
echo "net.ipv6.conf.lo.disable_ipv6 = 1" | sudo tee -a /etc/sysctl.conf
After the reboot I can see that IPv& is disabled by running:
cat /proc/sys/net/ipv6/conf/all/disable_ipv6
On running netstat -antlp i see that most of the IPv6 applications have closed but SSHd keeps running:
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:9090 0.0.0.0:* LISTEN 663/java
[Code]....
Ho can I close the SSH daemon on port 22 of the IPv6?
View 2 Replies
View Related
Apr 6, 2010
A netmap scan of my WAN IP address (cable modem) shows;
23/tcp open telnet?
8080/tcp open tcpwrapped
I've called Linksys and Netgear and they have said there is no user adjustable configuration allowed for the Cable Modems.
How am I supposed to close the open ports if the manufacturer doesn't allow access ?
View 1 Replies
View Related
Mar 11, 2010
I'm currently using Ubuntu 9.1, and a motherboard which has two Ethernet ports on it.
What I would like to do is bridge these ports, so I can plug in another Ethernet cable and run it to an unmanaged switch in my room (handy for my work laptop when on-call and building other PCs, etc).
I.e. Router --> 8-Port Switch --> My PC.
Eth 0 --> 192.168.1.100 static
Eth 1 --> 5-Port Switch --> DHCP
I believe this is the config to make the ports bridged:
ifconfig Eth0 0.0.0.0
ifconfig Eth1 0.0.0.0
brctl addbr Bridge0
brctl addif Bridge0 Eth0
brctl addif Bridge0 Eth1
ifconfig Bridge0 up
- How do I save this so upon reboot it sticks?
- How do I force Eth0 to remain as a static IP of 192.168.1.100?
View 8 Replies
View Related
Sep 3, 2010
How do I change the ports that something like xchat uses to make it use the same port as firefox? I am currently somewhere that has all non browser ports blocked.
View 1 Replies
View Related
Aug 12, 2011
I have a vps server running certain services which can be accessed via a web browser (e.g webmin control panel), but I have recently been unable to access these services from my home machine using Firefox 5.0, running ubuntu 11.04.
Example:
I can access the server on port 80 fine, eg: [URL]
However I cannot access my webmin control panel on: [URL]
The pages takes ages to load and then times out. Same with transmission-daemon on: [URL]
Everything is set up fine on my server, the ports are open in firewall etc. and I can access these pages fine from my work computer.
This has only started happening in the last day or two and had been working fine up till then. I have not messed around at all with the firewall on my home machine. I have tried other browsers besides Firefox with same result.
View 4 Replies
View Related
Jun 25, 2010
I have a Suse 10.3 router with 4 network cards. 1 is to connect to the big network and thereby also the internet, 2 are for 'client' subnets and I want to use the last one as a DMZ. In this DMZ will be a web server which has to be accessible from the other 2 subnets and from the big network. I could do it with a few simple clicks in Yast firewall, but I have some issues with this firewall and there for I want to use it as minimal as possible, using Iptables.
So now I'm struggling a bit with Iptables. Basicly what I'm looking for is how to block all ports but 80 in this last subnet with iptables.
View 5 Replies
View Related
Jan 16, 2010
Label on card: "I-440 PCI 4S1P IO Card"
Code:
# lspci -v
...
[code].....
View 3 Replies
View Related
Jan 19, 2011
For some reason I'm unable to connect to anything through these ports and I can't figure out why. I have to use a proxy address to access my irc channels.I've ruled out my router by disabling all router network filtering, so it must be something on this computer.
View 3 Replies
View Related
Jul 7, 2011
I am using Fedora 13 64bit. My eclipse program starts a server on port 9050 but I shutdown the program, eclipse fails to properly shutdown the server. Restarting eclipse has no effect.
How can I close or unbind a port forcibly from command line?
I know rebooting or log off and back on will clear the ports but this much slower process for me. I am looking for forcibly closing the port in command line.
View 1 Replies
View Related
Feb 19, 2010
tring to run an ftp server on default ports with port 10100-10199 as passive. Using vsftp. But the ports refuse to open what the heck am I doing wrong? see screen shot. oh using karmac, now.
View 2 Replies
View Related
Feb 1, 2011
I'm simply trying to make a little restriction on www packets under two rules:
1. Allow inbound/outbound www packets (works!)
2. DROP inbound traffic to port 80 from source ports less than 1024. (DOES NOT WORK!)
Now, technically, when i use hping to test my rules, hping3 192.168.100.100 -S -p80 -s 1023 I should NOT receive any packets. However, i still receive packets, which means my rule that says less than 1024 does not work. (see below)
And this is my iptables rules in shell-script so far:
#!/bin/sh
DEFAULT_NIC=eth0
SERVER_IP="192.168.100.100"
ALLOWED_WWW_PORT=80
IPT="/sbin/iptables"
[Code].....
View 1 Replies
View Related
Feb 27, 2011
Running: Ubuntu 10.10
I'm in a bind and I don't know how to get what I want. Nmap shows ipp running cups on port 631. Great, simple enough I uninstall cups, along with its dependencies. A new portscan reveals that the port is closed SUCCESS, but... Ubuntu Update Manager nags me @ every restart about the "important security" updates. I can't lock the version of cups in Synaptic, because cups is not installed! So you see I'm in a bind. If I have cups installed I have an open port, and if I uninstall cups the update manager nags me. What do I do? I've tried:
- stopping the cups service and issuing the chkconfig cups off command... (doesn't close the port)
- uninstalling cups... (update manager nags)
- fuser -k 631/tcp (great, but @ reboot the port is still open)
Please teach me how to close this port / stop this service / tell update manager to shove cups.....
View 8 Replies
View Related
