Originally Posted by
chrisbrat
Hi,
I have a virtual server hosted at my ISP with Gutsy running and I have installed a web server and access the server using ssh.
The only ports that are shown to be active when using nmap are 80 and 22.
At the moment I don't intend to activate any other ports, so my question is would adding a firewall, or activating IPTables, be redundant or not?
Thanks.
Chris
Disclaimer : Yes I am a noob.
Using a firewall seems pointless to me. If you feel it necessary to restrict access via ssh it can be done with /etc/hosts.allow. For example, if you only ever login to the server from one location the lines
Code:
sshd: 158.152.1.59: ALLOW
sshd: ALL: DENY
in /etc/hosts.allow are sufficient to deny ssh access from anywhere but 158.152.1.59.
If required, you could do something similar for the web server or use its configuration file.
Bookmarks