On Tue, Dec 26, 2000 at 12:53:49PM -0600, Brandon wrote: > > > I'm no expert on TCP/IP connections and such, but even if FProxy rejects > > all non-localhost connections, can the attacker still find out that > > there's something running on port 8080, and then portscan for the node? > > Port 8080 is a normal port to run a web server on. So running FProxy on > port 8080 is not very suspicious. Make that: It is a normal port to run an *unprivileged* web server on a Unix/Linux machine on. -- Travis Bemann Sendmail is still screwed up on my box. My email address is really [EMAIL PROTECTED]
PGP signature- [Freenet-dev] Gaping hole in FProxy: fix or wait. Mark J. Roberts
- Re: [Freenet-dev] Gaping hole in FProxy: fix or wait. Mark J. Roberts
- Re: [Freenet-dev] Gaping hole in FProxy: fix or w... Scott G. Miller
- Re: [Freenet-dev] Gaping hole in FProxy: fix or w... Brandon
- Re: [Freenet-dev] Gaping hole in FProxy: fix ... Travis Bemann
- Re: [Freenet-dev] Gaping hole in FProxy: fix or wait. Brandon
- Re: [Freenet-dev] Gaping hole in FProxy: fix or w... Mark J. Roberts
- Re: [Freenet-dev] Gaping hole in FProxy: fix ... Brandon
- Re: [Freenet-dev] Gaping hole in FProxy: ... Scott G. Miller
- Re: [Freenet-dev] Gaping hole in FProxy: ... Mark J. Roberts
- Re: [Freenet-dev] Gaping hole in FPr... Brandon
- Re: [Freenet-dev] Gaping hole in... Mark J. Roberts
- Re: [Freenet-dev] Gaping hol... Mark J. Roberts
