From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <cpt.kirk@1tree.net>
Received: from ignatious.1tree.com(c716099-a.rchdsn1.tx.home.com[24.7.105.70])
 (1454 bytes) by braille.uwo.ca
	via smail with P:esmtp/D:aliases/T:pipe
	(sender: <cpt.kirk@1tree.net>)
	id <m13pao9-0013uBC@braille.uwo.ca>
	for <speakup@braille.uwo.ca>; Sat, 28 Oct 2000 14:34:21 -0400 (EDT)
	(Smail-3.2.0.102 1998-Aug-2 #2 built 1999-Sep-5)
Received: from cpt.kirk (helo=localhost)
	by ignatious.1tree.com with local-esmtp (Exim 3.12 #1 (Debian))
	id 13patz-0000Gn-00
	for <speakup@braille.uwo.ca>; Sat, 28 Oct 2000 13:40:23 -0500
Date: Sat, 28 Oct 2000 13:40:23 -0500 (CDT)
From: Kirk Wood <cpt.kirk@1tree.net>
X-Sender: cpt.kirk@ignatious.1tree.com
To: speakup@braille.uwo.ca
Subject: Re: need a volunteer
In-Reply-To: <Pine.LNX.4.21.0010281322370.947-100000@ignatious.1tree.com>
Message-ID: <Pine.LNX.4.21.0010281336350.947-100000@ignatious.1tree.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
List-Id: <speakup.linux-speakup.org>

By the way any port can be instantly closed with ipchains. Again the
general method is:

ipchains -A input -p tcp -d your_ip_address:port -j DENY

This will drop the packet as if it never occured. You can change the last
part to REJECT in which case an icmp message is sent back to the
originating host. But if you DENY the packet a port scanner won't see your
machine. Don't rely on this to say you won't be attacked. It just lowers
your profile.

By the way, while ATT at Home is less secure then some ISPs, the internet
in general is a hostile world. If you really want to secure against it cut
the connection. Next would be to find an ISP that will place you behind
their firewall.

=======
Kirk Wood
Cpt.Kirk@1tree.net