Thank you.
When, SSH listed in the services sections then all of these protections applied to it
automatically?
On Monday, October 5, 2020, 07:25:27 PM GMT+3:30, Eric Garver <egarver(a)redhat.com>
wrote:
On Mon, Oct 05, 2020 at 03:33:36PM +0000, Jason Long wrote:
Should I remove it from Service?
Yes.
On Monday, October 5, 2020, 04:39:32 PM GMT+3:30, Eric Garver
<egarver(a)redhat.com> wrote:
On Sun, Oct 04, 2020 at 11:25:14AM -0000, Jason Long wrote:
> After it, my rules are:
>
> public (active)
>Â target: default
>Â icmp-block-inversion: no
>Â interfaces: ens192
>Â sources:
>Â services: http https ssh
>Â ports: 990/tcp 40000-50000/tcp
>Â protocols:
>Â masquerade: no
>Â forward-ports:
>Â source-ports:
>Â icmp-blocks:
>Â rich rules:
> Â Â Â rule service name="ssh" accept limit value="1/m"
As I said in my other email, this rich is not having the desired effect
because "ssh" is still listed in services.