MailScanner and syslog (fixed!)
Quentin Campbell
Q.G.Campbell at NEWCASTLE.AC.UK
Thu Mar 28 10:41:20 GMT 2002
> -----Original Message-----
> From: Mike Zanker [mailto:mike at zanker.org]
> Sent: 28 March 2002 10:13
> To: MAILSCANNER at JISCMAIL.AC.UK
> Subject: Re: MailScanner and syslog (fixed!)
>
>
> On 28 March 2002 09:14 +0000 Quentin Campbell
> <Q.G.Campbell at newcastle.ac.uk> wrote:
>
> > Re. your comments about port 514/udp, RedHat 7.2 does block
> this port
> > by default in /etc/sysconfig/ipchains; in fact it blocks
> all UDP ports
> > below 1024. I believe this default blocking is a feature new to 7.2.
>
> Doesn't the default ipchains also permit everything via the
> loopback interface, though?
>
That is not explicit, either in the ipchains man page or in the ipchains
file itself. I would be interested to see the reference.
If it is the case, however, then that would explain why internal writes
to 514/udp are getting through ipchains.
I hope this discussion has not got too far off topic. :-)
Thanks to Nick, Mike and Michael for thir responses to my original
enquiry.
Quentin
---
PHONE: +44 191 222 8209 Computing Service, University of Newcastle
FAX: +44 191 222 8765 Newcastle upon Tyne, United Kingdom, NE1 7RU.
------------------------------------------------------------------------
"Any opinion expressed above is mine. The University can get its own."
More information about the MailScanner
mailing list