wiki:UbuntuSecuringDeepaMehta

Version 1 (modified by JuergeN, 13 years ago) (diff)

--

This side is work in progress!

Close public ports with iptables

Drop incoming requests on port 8080:

iptables -A INPUT ! -s 127.0.0.1 -p tcp --destination-port 8080 -j REJECT

Check (from a remote client machine) if jetty is securely blocked:

nmap deepamehta.yourdomain.tld -p 8080

should return

Starting Nmap 5.00 ( http://nmap.org ) at 2011-09-02 22:17 CEST
Interesting ports on deepamehta.yourdomain.tld (xxx.xxx.xxx.xxx):
PORT     STATE    SERVICE
8080/tcp filtered http-proxy

Nmap done: 1 IP address (1 host up) scanned in 0.53 seconds