I installed firestarter and it works great. I allowed only "WWW" so that others could access my basic web page. After a few hours, I returned to find a ton of "hits" recorded via firestarter and my hard disk was spinning like crazy. Is it possible that someone could access my HD if I allow WWW access? Just worried that my firewall is not properly working!

Did you look at the firewall logs?IOr i would do is re install and write your own iptables script so you know what comeing in and going out.

Yes, firestarter displays origin of hits and length of session time...none more than 38 secs but multiple hits in the course of minutes using different services/protocols.

Originally posted by bkinney
Is it possible that someone could access my HD if I allow WWW access? Just worried that my firewall is not properly working!

It is always possible to access your computer as soon as you connect it to the internet. It would be nice to know what version of software you are using (probably apache, using openssl???), because all you need is a security hole in your www-server and sombody can even get root access to your computer.

make sure you are using the latest updates....for your software and otherwise look closer at your firewall configuration, because there may be something else that isn´t closed........

I'm using Apache but firestarter as my firewall. I only have WWW and FTP services available. Firestarter displays all of the hits (blocked) that I receive. Now that I can "see" the hits I feel more vulnerable, but those hits were happening when I was using iptablees, I just didn't look at the logs!