Thread: Kindle Touch and PuTTy
View Single Post
Old 06-20-2012, 02:59 PM   #17
bhaak
Groupie
bhaak can program the VCR without an owner's manual.bhaak can program the VCR without an owner's manual.bhaak can program the VCR without an owner's manual.bhaak can program the VCR without an owner's manual.bhaak can program the VCR without an owner's manual.bhaak can program the VCR without an owner's manual.bhaak can program the VCR without an owner's manual.bhaak can program the VCR without an owner's manual.bhaak can program the VCR without an owner's manual.bhaak can program the VCR without an owner's manual.bhaak can program the VCR without an owner's manual.
 
bhaak's Avatar
 
Posts: 164
Karma: 164969
Join Date: Dec 2011
Device: Palm IIIx, (iPhone|Kindle) Touch
Quote:
Originally Posted by hawhill View Post
iptables is probably a good option here, yes. The rules are slightly wrong, though. First, the "ACCEPT" lines would never match since the "-j" jump to the DROP target is a final action. The DROP target should be jumped to after checking the more specific ACCEPT rules.

And then if they would match - it's very probable that the Kindle's wlan0 interface will have a local IP, so all outgoing connections would be allowed (-s is the "source" IP switch). You probably meant to allow connections _to_ the local network, which would be the "-d" flag instead of the "-s" flag.
Thanks, it's been awhile since I used iptables and you are of course completely right.

Quote:
Originally Posted by hawhill View Post
Although I can't really see why even local connections should be allowed. The DROP line would be sufficient.
But then you can't ssh by wi-fi into your kindle anymore. At least for me that's really neat and I wouldn't want to miss it and having to handle the usb cable for transferring stuff.

I've updated my post with rules that allow private IPs and drops anything else for all interfaces.
bhaak is offline   Reply With Quote