The 2 NIC firewall issue - again.

[William Hooper]

Tim Neto said:

> One of my UNIX firewall servers was hacked over the weekend.  I'm not
> saying VNC was the door the intruder used.   I have restored a backup
> image, and then have tighten the server down further.   I now have the
> server closed but for 3 ports with VNC off and 4 ports with VNC on.  The
> ports are 21, 23, 80 with VNC on port 6001 is also open.

There is no reason to leave 6001 open at all, the only thing that needs to
communicate with it is localhost.

From "Xvnc -help" it looks like Xvnc also supports "-nolisten"...

-- 
William Hooper