Hi people..

I was wondering, if I had some ports NOT monitored by any daemons.. do I need to explicitly close them using a firewall for my system to be secure ??

Not really.

The "port" is just a number attached conceptually to a service. It does not exist without a server hanging on to it.

If you're not running an httpd, then for example you wouldn't need to worry about port 80 TCP.

CAVEAT EMPTOR: It is considered good style to do so anyhow, for lots of reasons. Logging access attempts may paint a bigger picture being one reason.

Another reason is that firewalling off unused ports provides an extra layer of defense if you are rooted and trojaned.

Yes, I know these are remote possibilities, that's why I called it "good style" and not "essential".

Okay I got it


thanx alot MadFarmAnimalz :)

just a tip, use DROP instead of REJECT in INPUT, because too many egyptian are trying to be l33t and scan for security holes lately so it's just a waste of bandwidth to reply to their echos/connect() tries.

peace

If you drop, then you tell them that there is a firewall guarding that PRECIOUS machine.
You raise their interest for sure :)

or may be teling them its off line what u would think if u ping in ip and reqest time out