Shorewall users - Oct 2003 - Default "reject" ports

Hello,

	New shorewall user here - I have a question about the ports that 
shorewall is setup to reject instead of drop by default. The ports I am 
concerned about are 113, 135, 139, and 445.

	Do most people leave this as is, or do you put in specific rules to 
DROP  so that the ports are stealth? I was going to just add the rules, 
but thought I''d see if anyone knows of any reasons why I
shouldn''t.

	My port 25 is going to be open anyway, so it''s not like i''m
completely
stealth....

Thx,
  Graham

-- 

And as an afterthought, this must too be told,
Some people are taking pure bullshit, and turning it into gold.
				- Grandpa Green (Greendale, CA USA)

What''s happening in Idledale? Not Much!   http://www.idledale.com/

On Tue, 2003-10-28 at 14:39, Graham Knight wrote:
> 
> 	Do most people leave this as is, or do you put in specific rules to 
> DROP  so that the ports are stealth? I was going to just add the rules, 
> but thought I''d see if anyone knows of any reasons why I
shouldn''t.
Have you reviewed the answer to FAQ #4?

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep@shorewall.net