RE: [K12OSN] Tips on blocking file-sharing?

Henry Hartley (henryhartley@westat.com)
Fri, 14 Mar 2003 10:37:01 -0500

Messages sorted by: [ date ][ subject ][ author ]
Next message: Jim Thomas "Re: [K12OSN] Tips on blocking file-sharing?"
Previous message: Jimmy Schwankl "[K12OSN] Re: generic floppy access on K12LTSP v.7.2"

>> -----Original Message-----
>> From: Jim Thomas [mailto:jthomas@bittware.com]
>> Sent: Friday, March 14, 2003 9:55 AM
>> 
>> I do not have a good understanding of how these
>> protocols work, and that will make it hard for
>> me to block.  Does anyone have pointers?

This will not stop things all together but blocking
ports 6345 through 6355  *in both directions* will
eliminate much of the gnutella trafic.  Gnutella
defaults to 6346.  Since it can be run on ANY port,
that will not eliminate it completely but since
most people out there don't even know what a port
is, they probably won't change the default and it
should help.

It's actually not a bad policy to block ALL
outgoing connections except to well known ports and
see who complains.  Then you can make a security
decision about any particular port, as to opening
it back up.

-- 
Henry Hartley



_______________________________________________
K12OSN mailing list
K12OSN@redhat.com
https://listman.redhat.com/mailman/listinfo/k12osn
For more info see

Next message: Jim Thomas "Re: [K12OSN] Tips on blocking file-sharing?"
Previous message: Jimmy Schwankl "[K12OSN] Re: generic floppy access on K12LTSP v.7.2"