Search Members Help

» Welcome Guest
[ Log In :: Register ]

Mini-ITX Boards Sale, Fanless BareBones Mini-ITX, Bootable 1G DSL USBs, 533MHz Fanless PC <-- SALE $200 each!
Get The Official Damn Small Linux Book. DSL Market , Great VPS hosting provided by Tektonic
 

[ Track this topic :: Email this topic :: Print this topic ]

 reply to topic new topic new poll
Topic: how about a *really small* firewall, a small iptables script could do the job< Next Oldest | Next Newest >
vees Offline





Group: Members
Posts: 81
Joined: Nov. 2005
Posted: Nov. 21 2005,16:23 QUOTE
Hi everybody,

I have recently discovered DSL and I have just ordered my copy.  But when looking at the packages list, I noticed that DSL does not seem to have any firewall.  So here is my suggestion, why not include this really small script called "blockall":

#!/bin/sh
iptables -F
iptables -A INPUT -p all -s 127.0.0.1 -j ACCEPT
iptables -A INPUT -p tcp --syn -j DROP

and make it executable from alt-F12 (like Knoppix-STD does).

Of course, this can harly qualify as a "firewall" but this small iptables script allow for some reasonably safe surfing on the web?

What do you think?

Cheers.

VS

PS: FYI - should it not be possible to add this script to DSL,  it is always possible to manually write it, then chmod +x blockall in the default user directory, then "sudo ./blockall"

--------------
Motto: chown -R linux:GNU world
Back to top
Profile PM 
SaidinUnleashed Offline





Group: Members
Posts: 1428
Joined: Mar. 2004
Posted: Nov. 21 2005,16:51 QUOTE
Since iptables is not included in DSL, this probably will not be added to the base iso.

If you need rudimentary firewall function in DSL, without adding the iptables.dsl, you can edit the /etc/hosts.deny and hosts.allow, respectively.

-J.P.

--------------
They say if you play a Microsoft CD backwards, you hear satanic messages. That's nothing, cause if you play it forwards, it installs Windows.

Unleash the power of the TILDE~~~
Back to top
Profile PM AOL MSN YIM 
VS
Unregistered
Posted: Nov. 21 2005,23:09 QUOTE
Quote (SaidinUnleashed @ Nov. 21 2005,11:51)
Since iptables is not included in DSL, this probably will not be added to the base iso.

If you need rudimentary firewall function in DSL, without adding the iptables.dsl, you can edit the /etc/hosts.deny and hosts.allow, respectively.

-J.P.

Would it be possible to add iptables (without a front-end)?
Back to top
SaidinUnleashed Offline





Group: Members
Posts: 1428
Joined: Mar. 2004
Posted: Nov. 21 2005,23:19 QUOTE
As I said, it's available as iptables.dsl. Use it to your heart's content.

--------------
They say if you play a Microsoft CD backwards, you hear satanic messages. That's nothing, cause if you play it forwards, it installs Windows.

Unleash the power of the TILDE~~~
Back to top
Profile PM AOL MSN YIM 
vees Offline





Group: Members
Posts: 81
Joined: Nov. 2005
Posted: Nov. 22 2005,13:05 QUOTE
Quote (SaidinUnleashed @ Nov. 21 2005,18:19)
As I said, it's available as iptables.dsl. Use it to your heart's content.


Sorry, I was inattentive.

Thanks for everything!

--------------
Motto: chown -R linux:GNU world
Back to top
Profile PM 
4 replies since Nov. 21 2005,16:23 < Next Oldest | Next Newest >

[ Track this topic :: Email this topic :: Print this topic ]

  		reply to topic new topic new poll
Quick Reply: how about a *really small* firewall

Do you wish to enable your signature for this post?
Do you wish to enable emoticons for this post?
Track this topic
View All Emoticons
View iB Code