You can follow the others advice for iptables stuff.. or shutting down services.. in addition, you could block ICMP via iptables..
but I prefer to disable it via proc
echo "1" >/proc/sys/net/ipv4/icmp_echo_ignore_all
However.. ICMP serves a purpose.. if you are running a server, it isn't recommended that you disable it.
You can find all open ports, and what applications are using them via: lsof -i -n
-- netmask
John Dangler (jdangler@xxxxxxxxxxxx) composed today:
I went to the ShieldsUP!!! site and ran the file sharing and common ports tests. According to the results, I allowed ping to reply to their server via ICMP echo, and I have port 21 (ftp) and 23 (telnet) open. How do I:
(1) block/ignore ICMP echo requests (2) Tell inquirers that ports 21 and 23 exist but are closed to connections
Thanks for the feedback.
John Dangler
-- fedora-list mailing list fedora-list@xxxxxxxxxx To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list
