Hi, I have a PC that is just for internet access, I don't want it to be able to access any of the windows or samba servers on the network.. I removed samba-client thinking this would solve the problem but the network can still be browsed via Nautilus.. Is there a way to disable network browsing through any of the GUI interfaces? Thanks..
Iptables block UDP ports 137 and 138 TCP port 139 then no samba share will work from that machine =) Atleast this way it could be easily lifted if you had a need to access the shares again. Or I guess you could password all the shares so that any attempts without auth fail.
On Sunday 08 January 2006 11:28, WipeOut wrote:> > Is there a way to disable network browsing through any of the GUI > interfaces? >Simplest way would be to download and install firestarter http://www.fs-security.com/ 1. Set default outbound policy to deny. 2. Open up port 80, 443, and any other ports you need open. Make sure to leave 137-139 and 445 closed. This will definitely prevent any browsing of SMB shares. ;-)