7MS #147: DIY Hosted Mutillidae
1 min read Podcast, diy

7MS #147: DIY Hosted Mutillidae

In this episode I talk about how to build a cheap hosted Mutillidae server to safely hack away on while keeping other Internet prowlers out. Here are the basic commands to run to lock down the Digital Ocean droplet's iptables firewall:

Flush existing rules
sudo iptables -F

Allow all concurrent connections
sudo iptables -A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT

Allow specific IPs/hosts to access port 80
sudo iptables -A INPUT -p tcp -s F.Q.D.N --dport 80 -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT

Allow specific IPs/hosts to access port 22
sudo iptables -A INPUT -p tcp -s F.Q.D.N --dport 22 -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT

Block all other traffic:
sudo iptables -P INPUT DROP

Provide the VPS loopback access:
sudo iptables -I INPUT 1 -i lo -j ACCEPT

Install iptables-persistent to ensure rules survive a reboot:
sudo apt-get install iptables-persistent

Start iptables-persistent service
sudo service iptables-persistent start

If you make iptables changes after this and they don't seem to stick, do this:
sudo iptables-save > /etc/iptables/rules.v4

See this Digital Ocean article for more information.

You might also like...

Jan
19

7MS #607: How to Succeed in Business Without Really Crying - Part 15

1 min read
Jan
12

7MS #606: Hacking OWASP Juice Shop (2024 edition)

1 min read
Jan
05

7MS #605: Navigating the Demands of Tech Leadership with Amanda Berlin of Blumira

1 min read
Jan
01

7MS #604: A Two Tool Teaser

1 min read
Dec
24

7MS #603: Monitoring Your Tailscale Network with Uptime Kuma

1 min read

Popular tags

Podcast Pentesting interviews blue team diy