firewalls

[silvernetuk]

HI,

What firewall would you recommend for me, I have never setup a firewall on a linux system I am running redhat 7.3 with cpanel/whm and the latest Kernel ?

Regards,
Garry

 

[silvernetuk]

anyone

Regards,
Garry

 

[dgbaker]

Bastille is quite a good one for a software firewall.

 

[silvernetuk]

Hi,

Does it work with the latest kernel ?

Regards,
Garry

 

[dgbaker]

Ahh!! Good point, I'll have to verify that. I do know that it broke on one of our dev boxes during the kernel upgrade and I don't think we went back to correct it yet.

 

[silvernetuk]

Hi,

Can you let me know asap, as our server was hacked today and I need to put something on it

They go in via sh (Shell)

Regards,
Garry

 

[dgbaker]

So far it is a no go, we just tried to re-setup bastille and are still getting iptables warnings. We are still though looking into it.

BTW - If they got in through ssh, it should show in the /var/log/ area of files. Check messages to see if the account name is there it should be and in secure it should show if the correct passwd was used.

 

[dgbaker]

We have Bastille up and running again with the latest kernel, the main trick is to ensure that the kernel is compiled with all the iptables components as modules. Then setup the default rule so psad functions properly.