On Tuesday, October 20, 1998 10:51 PM, Nicholas J. Leon
[SMTP:[EMAIL PROTECTED]] wrote:
>
> Now, the problem I see is that suddenly, ANY udp port locally is now
> accessable as long as it originates from port 53 on the outside. This is
a
> massive security hole as far as I'm concerned.
>
> What can be done about this? Suggestions? Comments? ... Glynn? :)
Surely, the only problem is when someone on the outside tries to connect to
a port which is configured to respond with a service (telnet, SMTP, FTP
etc)? Isn't the solution simply to restrict the port range on the ipfwadm
command line, so that the only local ports that can be accessed are those
which don't support a service?
Neil
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
