update script kiss firewall not working

[seachen]

[root@server13 updatescript]#./update.script KISS

--2011-02-06 03:10:06-- http://tools.web4host.net/kiss.tmp
Resolving tools.web4host.net... 184.82.236.40
Connecting to tools.web4host.net|184.82.236.40|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 17854 (17K) [text/plain]
Saving to: `kiss.tmp.1'

100%[===================================================================================================================================================================================================>] 17,854 53.5K/s in 0.3s

2011-02-06 03:10:09 (53.5 KB/s) - `kiss.tmp.1' saved [17854/17854]

chmod: cannot access `kiss': No such file or directory
chown: cannot access `kiss': No such file or directory

KISS My Firewall install/update done
[root@server13 updatescript]#

how to solve this problem ?

 

[seachen]

I have try below. but got some error too.

[root@server13 bin]#wget http://www.indotek.com/kiss/kiss-2.2.tar.gz
--2011-02-06 03:12:05-- http://www.indotek.com/kiss/kiss-2.2.tar.gz
Resolving www.indotek.com... 173.212.240.147
Connecting to www.indotek.com|173.212.240.147|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 4290 (4.2K) [application/x-gzip]
Saving to: `kiss-2.2.tar.gz'

100%[======================================>] 4,290 --.-K/s in 0.03s

2011-02-06 03:12:06 (141 KB/s) - `kiss-2.2.tar.gz' saved [4290/4290]

[root@server13 bin]#tar zxvf kiss-2.2.tar.gz
kiss
[root@server13 bin]#kiss start
-bash: /usr/bin/kiss: Permission denied
[root@server13 bin]#

 

[mr.applesauce]

chmod 750 /usr/bin/kiss
kiss start

 

[nobaloney]

A quick check on this version of KISS shows it doesn't open all ports required by DirectAdmin. There's a DirectAdmin specific version on my site, here.

Jeff

 

[mr.applesauce]

TCP_IN="20 21 22 25 53 80 110 123 143 443 587 2086 2087 2222 3306 6277 10000"
TCP_OUT="20 21 22 25 37 43 53 80 81 113 443 2086 2087 2222 3306 6277"

What are ports 2086 2087 6277 37 43 and 10000 open for?

 

[nobaloney]

2086 & 2087 are required to be open if you've got ModernBill.

6277 is required by the Distributed Checksum Clearinghouse; more information here.

37 is used by the time protocol.

43 is used by the whois protocol.

10000 is the port used by Webmin.

Any standard ports can be searched this way:

http://www.speedguide.net/port.php?port=43

but replace the port number at the end with the one you want.

These are all ports I found useful at the time I published my vesion of kiss. Your mileage may of course differ.

You can of course remove any port you don't need.

Jeff

 

[mr.applesauce]

I found that ntpdate still complains when using this firewall.

I had to use the -u flag on ntpdate to get it to work.


-u Direct ntpdate to use an unprivileged port for outgoing packets.
This is most useful when behind a firewall that blocks incoming
traffic to privileged ports, and you want to synchronise with
hosts beyond the firewall. Note that the -d option always uses
unprivileged ports.

 

[toml]

ntpdate I beleive uses UDP on port 123, so that would have to be opened in the firewall to use it without the -u option.

 

[mr.applesauce]

I tried doing it that way and that didnt help.