steward75 Posted July 1, 2004 Report Share Posted July 1, 2004 Okay I dont understand this. When I installed MDK10, they have a little section that says when setting up the security settings which level you want your computer set at. If you choose the level they suggest for servers, it blockes out my email ports! ARGH!. You know the standard SMTP and POP3 and IMAP ports. I think it may also block Apache but I'm not too sure on that. Can anyone tell me how to add my Postfix stuff so that Mandrake Security (MSEC) wont block it? Thanks. Quote Link to comment Share on other sites More sharing options...
streeter Posted July 1, 2004 Report Share Posted July 1, 2004 If you wish to run a publicly accessible server, you should read (and understand) the shorewall (firewall) and server docs/howtos - remember (unlike some systems) Linux starts off blocking everything - you have to allow access. If you are only running the servers on a private LAN, then the standard security setting should suffice. (but you will still have to configure them to allow access). Webmin is an excellent tool for setting up your servers (urpmi webmin to install) Quote Link to comment Share on other sites More sharing options...
steward75 Posted July 1, 2004 Author Report Share Posted July 1, 2004 But I thought Shorewall was something completely different. I dind't htink that that was linked to the Mandrake Security Levels. Quote Link to comment Share on other sites More sharing options...
streeter Posted July 1, 2004 Report Share Posted July 1, 2004 The security levels are mainly used to set file access, logging, periodic checks, certain networking options etc... Have a look in mcc and msec . The higher settings can do annoying things like changing permissions on a public samba shared directory in /home every hour (he said from experience...) and disabling your servers - the higher levels are probably not needed if you are not allowing the public in. (individual settings can be tweaked) Servers can be enabled with the chkconfig command (see the howto) The firewall will need to be have certain ports opened up to allow packets in to your machine. This is indeed a separate operation. The servers will of course also need to be told to listen to those ports on the required interface. You didn't say exactly what you are trying to do, and how far you have got - Public or private access? As I said, if you are 'going public' i.e. opening up incoming ports on an internet facing interface, you really should do a bit of reading... Quote Link to comment Share on other sites More sharing options...
steward75 Posted July 1, 2004 Author Report Share Posted July 1, 2004 Well the MDK 10 box is a server which I run a little webserver and email server that I use. The server resides behind a Linksys router which I have the specific ports for email and web forwarded to that specific computer. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.