l i n u x - u s e r s - g r o u p - o f - d a v i s
L U G O D
 
Next Meeting:
September 2: Social gathering
Next Installfest:
TBD
Latest News:
Aug. 18: Discounts to "Velocity" in NY; come to tonight's "Photography" talk
Page last updated:
2006 Sep 21 23:44

The following is an archive of a post made to our 'vox mailing list' by one of its subscribers.

Report this post as spam:

(Enter your email address)
Re: [vox] RE: security dilemma
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [vox] RE: security dilemma



On Thursday 21 September 2006 01:51 pm, BRANDON TEARSE tearseb-at-msn.com 
|lugod| wrote:
> These responses thus far are all excellent security measures that
> essentially tell you to secure your box w/o using address-based
> authentication.  Their security measures are important but do remember that
> even if you can exclude half of the IPs from connecting to your machine,
> that's a significant portion of the internet that wont be able to attack
> you (it sounds like you can even get down to excluding 24/25ths of the
> internet even.)
>
> You mentioned that you couldn't figure out what the full range of allowable
> IPs are for your ISP.  This is generally fairly easy to ascertain with a
> few ARIN lookups (check the various IPs you've got and you'll probably find
> a common company who's range you can stick in your allow list.)
>
> Alternatively, someone suggested using DynDNS as a service to constantly
> update what your current IP and stick that in an allow rule (This is what I
> do and it works nicely).  DynDNS of course costs a yearly fee (granted,
> having a "static" dynamic address is handy for all sorts of other things
> too) whereas the ARIN lookups are free.

DynDNS service is free for a few hosts per user. Additionaly,  I have written 
a server implementation of the dyndns.org update protocol in PHP, for use 
with MyDNS.  
http://ryanc.org/nic/update.php.txt It is compatible with most dyndns client 
software.

-- 
Ryan Castellucci - http://ryanc.org/
GPG Key: http://ryanc.org/files/publickey.asc
_______________________________________________
vox mailing list
vox@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox



LinkedIn
LUGOD Group on LinkedIn
Sign up for LUGOD event announcements
Your email address:
facebook
LUGOD Group on Facebook
'Like' LUGOD on Facebook:

Hosting provided by:
Sunset Systems
Sunset Systems offers preconfigured Linux systems, remote system administration and custom software development.

LUGOD: Linux Users' Group of Davis
PO Box 2082, Davis, CA 95617
Contact Us

LUGOD is a 501(c)7 non-profit organization
based in Davis, California
and serving the Sacramento area.
"Linux" is a trademark of Linus Torvalds.

Sponsored in part by:
Appahost Applications
For a significant contribution towards our projector, and a generous donation to allow us to continue meeting at the Davis Library.