ADSL usb modems

Rick Stevens rstevens at vitalstream.com
Wed May 19 18:29:27 UTC 2004 

Graeme Nichols wrote:
> On Tue, 2004-05-18 at 02:29, Rick Stevens wrote:
> 
> 
>>>Rick, I installed it and booted Linux. It was found during boot-up and
>>>Linux installed the drivers OK. It is a RealTek RTL-8139, SMC EZ Ca.
>>
>>Terrific!  Yeah, the RealTeks are being used a lot on mobos now.
>>They're pretty good.  Not the fastest thing in the world, but
>>reasonable.
>>
>>
>>>Linux talked to the ADSL modem/router straight away. Now... as soon as
>>>Telstra (our local telco here in Aust.) activates the line for ADSL I
>>>can configure the modem/router and be away, hopefully :-)
>>
>>Great!  And away we go!  Make REAL sure you set up a VERY restrictive
>>firewall, Graeme.  Don't allow anything IN except the absolute minimum
>>of what you need.  In my case, it's DNS (TCP/UDP port 53), SSH (TCP
>>port 22) and NTP (TCP/UDP port 123).
> 
> 
> Hello Rick, I will! and thank you for pointing out the ports you allow
> in. I wont need SSH coming in and probably not NTP either.
> 
>>Turn off any daemons you don't need (e.g. don't portmap unless you're
>>running NFS or need FAM) and restrict those you do need to your local
>>network (probably 192.168.0.0/24 or whatever the local side of the
>>router is).  Make sure no other daemons or xinetd are listening on some
>>weird ports (run nmap/nmapfe on your system).  Try to run something like
>>tripwire on your system, too, so you can see changes to your
>>filesystems.
> 
> 
> I already run tripwire and I'll take your advice and make sure nothing
> is listening on anything else.
> 
> Again, thanks for all your help and advice.

Glad to help.  I'm only being pedantic because being "on line"
continuously opens your machine up to LOTS of hack attempts.  Making
sure your firewall is as restrictive as possible, keeping up to date
on updates and patches and running something like tripwire is your best
defense against this stuff.

Of course, I'd love to hunt all these hacking, virus and worm writing
b*stards down and shoot them on the spot.
----------------------------------------------------------------------
- Rick Stevens, Senior Systems Engineer     rstevens at vitalstream.com -
- VitalStream, Inc.                       http://www.vitalstream.com -
-                                                                    -
-           grep me no patterns and I'll tell you no lines           -
----------------------------------------------------------------------

More information about the Redhat-install-list mailing list