Thomas,
to put it simply, there is no such thing as 100% security, there are risks
in everything. But, for others to try and make any suggestion to how
secure your setup is, they;d most likl;y prefer some more info. Ahh, but,
see, I erred coming out of the box here, as, Marcus Ranum has poffered up
a 100% secure solution, though, it has a few drawbacks;
http://pubweb.nfr.net/~mjr/pubs/fw-art/sld002.htm
Thanks,
Ron DuFresne
On Thu, 28 Sep 2000, Thomas Hamm wrote:
>
> Hi again Firewalls! ;)
>
> i'm still working on my firewall, and i think from packet's view it is
> sufficient.
>
> now, is it, in any way, possible, to 'fool' the rules of my firewall, so
> that packets get through though restricted?
>
> must rules are not depending on any adresses, it's just filtering everything
> coming in on a certain interface, so ip adresses don't play a role here.
>
> but, is it though possible? can the packets be manipulated that they can
> reach a specific port that would be usually rejected?
>
> ! hamm^frozen^tgdt
> -*- http://www.frozenproductions.com
> ... damn, i'm good
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
"Cutting the space budget really restores my faith in humanity. It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation." -- Johnny Hart
***testing, only testing, and damn good at it too!***
OK, so you're a Ph.D. Just don't touch anything.
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
