Comments on: Mastering IPTables, Part I http://www.weez.com/2010/07/mastering-iptables-part-i/ Solving everyday practical LAMP problems... one at a time Wed, 08 Feb 2012 23:54:01 +0000 hourly 1 http://wordpress.org/?v=3.0.1 By: patriot1369 http://www.weez.com/2010/07/mastering-iptables-part-i/comment-page-1/#comment-53537 patriot1369 Fri, 30 Jul 2010 16:27:57 +0000 http://www.weez.com/2010/07/mastering-iptables-part-i/#comment-53537 nice tutorial , would be even better if i could see all the letters nice tutorial , would be even better if i could see all the letters

]]> By: axel1973w http://www.weez.com/2010/07/mastering-iptables-part-i/comment-page-1/#comment-53536 axel1973w Fri, 30 Jul 2010 16:27:39 +0000 http://www.weez.com/2010/07/mastering-iptables-part-i/#comment-53536 VERY VERY NICE!! I LOVE VIDEO TUTORIALS!! GREAT WORK! want more :) VERY VERY NICE!! I LOVE VIDEO TUTORIALS!! GREAT WORK! want more :)

]]> By: ikemkrueger http://www.weez.com/2010/07/mastering-iptables-part-i/comment-page-1/#comment-53535 ikemkrueger Fri, 30 Jul 2010 15:41:01 +0000 http://www.weez.com/2010/07/mastering-iptables-part-i/#comment-53535 yepp, vi's colorsheme is to dark. the blue letters is as good as not, the pink ones really hard to see. yepp, vi’s colorsheme is to dark. the blue letters is as good as not, the pink ones really hard to see.

]]> By: patcito http://www.weez.com/2010/07/mastering-iptables-part-i/comment-page-1/#comment-53534 patcito Fri, 30 Jul 2010 14:49:15 +0000 http://www.weez.com/2010/07/mastering-iptables-part-i/#comment-53534 why don't you just do IPTABLES=`which iptables` instead of using whereis? This way is more portable too. why don’t you just do IPTABLES=`which iptables` instead of using whereis? This way is more portable too.

]]> By: pdwalker http://www.weez.com/2010/07/mastering-iptables-part-i/comment-page-1/#comment-53533 pdwalker Fri, 30 Jul 2010 13:49:33 +0000 http://www.weez.com/2010/07/mastering-iptables-part-i/#comment-53533 That would be a potential security hole, especially if someone is able to manipulate the system path and place another "iptables" executable somewhere else on your system that gets run instead. You always explicitly declare your paths for maximum safety. That would be a potential security hole, especially if someone is able to manipulate the system path and place another “iptables” executable somewhere else on your system that gets run instead. You always explicitly declare your paths for maximum safety.

]]> By: patcito http://www.weez.com/2010/07/mastering-iptables-part-i/comment-page-1/#comment-53532 patcito Fri, 30 Jul 2010 13:39:37 +0000 http://www.weez.com/2010/07/mastering-iptables-part-i/#comment-53532 If someone would have access to my machine and be able to change the path of iptables which would mean that the intruder probably has root access to my machine, I think that would mean I'm already screwed and the intruder can do whatever he wants. An absolute path wouldn't help at all. If someone would have access to my machine and be able to change the path of iptables which would mean that the intruder probably has root access to my machine, I think that would mean I’m already screwed and the intruder can do whatever he wants. An absolute path wouldn’t help at all.

]]> By: thablackmarkit http://www.weez.com/2010/07/mastering-iptables-part-i/comment-page-1/#comment-53531 thablackmarkit Fri, 30 Jul 2010 13:18:37 +0000 http://www.weez.com/2010/07/mastering-iptables-part-i/#comment-53531 fascinating. /me bookmarks fascinating.

/me bookmarks

]]> By: javier9185 http://www.weez.com/2010/07/mastering-iptables-part-i/comment-page-1/#comment-53530 javier9185 Fri, 30 Jul 2010 13:00:24 +0000 http://www.weez.com/2010/07/mastering-iptables-part-i/#comment-53530 INPUT through firewall?????? What?? OUTPUT through FIREWALL??? Forward through other host??? NONONONONONONONON PLease d´ont help us!!!!! INPUT through firewall?????? What?? OUTPUT through FIREWALL??? Forward through other host??? NONONONONONONONON PLease d´ont help us!!!!!

]]> By: linuxservers http://www.weez.com/2010/07/mastering-iptables-part-i/comment-page-1/#comment-53529 linuxservers Fri, 30 Jul 2010 12:05:42 +0000 http://www.weez.com/2010/07/mastering-iptables-part-i/#comment-53529 I understand that - Input Chain match packets wich destination is the Firewall itself and OUTSIDE Chain match packets that were originated inside of the Firewall, Forward chain is for packets that pass through it. I understand that – Input Chain match packets wich destination is the Firewall itself and OUTSIDE Chain match packets that were originated inside of the Firewall, Forward chain is for packets that pass through it.

]]> By: thablackmarkit http://www.weez.com/2010/07/mastering-iptables-part-i/comment-page-1/#comment-53528 thablackmarkit Fri, 30 Jul 2010 11:44:19 +0000 http://www.weez.com/2010/07/mastering-iptables-part-i/#comment-53528 lol i found a neat book, amazon* c o m/Linux-Firewalls-Detection-Response-iptables/dp/1593271417/ref=sr_1_1?ie=UTF8&s=books&qid=1242065650&sr=1-1 lol i found a neat book,
amazon* c o m/Linux-Firewalls-Detection-Response-iptables/dp/1593271417/ref=sr_1_1?ie=UTF8&s=books&qid=1242065650&sr=1-1

]]>