Просмотр исходного кода

Drop any outgoing telnet connections

Bob Mottram 8 лет назад
Родитель
Сommit
794962ac85
2 измененных файлов: 16 добавлений и 0 удалений
  1. 13
    0
      src/freedombone-utils-firewall
  2. 3
    0
      src/freedombone-utils-setup

+ 13
- 0
src/freedombone-utils-firewall Просмотреть файл

@@ -153,6 +153,19 @@ function configure_firewall {
153 153
     mark_completed $FUNCNAME
154 154
 }
155 155
 
156
+function firewall_drop_telnet {
157
+    if [[ $(is_completed $FUNCNAME) == "1" ]]; then
158
+        return
159
+    fi
160
+    # telnet isn't enabled as an input and we can also
161
+    # drop any outgoing telnet, just in case
162
+    iptables -A OUTPUT -p tcp --dport telnet -j REJECT
163
+    iptables -A OUTPUT -p udp --dport telnet -j REJECT
164
+    function_check save_firewall_settings
165
+    save_firewall_settings
166
+    mark_completed $FUNCNAME
167
+}
168
+
156 169
 function configure_firewall_ping {
157 170
     if [[ $(is_completed $FUNCNAME) == "1" ]]; then
158 171
         return

+ 3
- 0
src/freedombone-utils-setup Просмотреть файл

@@ -561,6 +561,9 @@ function setup_firewall {
561 561
     function_check configure_firewall_ping
562 562
     configure_firewall_ping
563 563
 
564
+    function_check firewall_drop_telnet
565
+    firewall_drop_telnet
566
+
564 567
     function_check configure_firewall_for_dns
565 568
     configure_firewall_for_dns
566 569