I have Samba up and running fine, however I want to be sure my server is very secure. When I run...
netstat -tanup | grep LISTEN
I see that it's listening on all interfaces (0.0.0.0).
However, in the smb.conf file, I have...
hosts allow = 192.168.0. 127.
So to my understanding, this should effectively stop any connections from those other than my LAN. Is this secure enough? From what I've been reading, I believe that it would be safer to have the service NOT listening to anything other than 192.168.0 instead of 0.0.0.0.
So my question is... is what I have safe enough? Do I need to change something so that it's not listening on 0.0.0.0 or will the "hosts allow" directive take care of everything? If I need to change it, can somebody explain what I need to change so it will only listen for connections from my LAN?
Thanks in advance.
netstat -tanup | grep LISTEN
I see that it's listening on all interfaces (0.0.0.0).
However, in the smb.conf file, I have...
hosts allow = 192.168.0. 127.
So to my understanding, this should effectively stop any connections from those other than my LAN. Is this secure enough? From what I've been reading, I believe that it would be safer to have the service NOT listening to anything other than 192.168.0 instead of 0.0.0.0.
So my question is... is what I have safe enough? Do I need to change something so that it's not listening on 0.0.0.0 or will the "hosts allow" directive take care of everything? If I need to change it, can somebody explain what I need to change so it will only listen for connections from my LAN?
Thanks in advance.