Re: ipfw and it's glory...
From: Bart Matthaei (bart@dreamflow.nl)
Date: 07/17/02
- Next message: Carroll, D. (Danny): "RE: ipfw and it's glory..."
- Previous message: Carroll, D. (Danny): "RE: ipfw and it's glory..."
- In reply to: Carroll, D. (Danny): "RE: ipfw and it's glory..."
- Next in thread: Dag-Erling Smorgrav: "Re: ipfw and it's glory..."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 17 Jul 2002 13:10:29 +0200 From: Bart Matthaei <bart@dreamflow.nl> To: "Carroll, D. (Danny)" <Danny.Carroll@mail.ing.nl>
On Wed, Jul 17, 2002 at 12:44:51PM +0200, Carroll, D. (Danny) wrote:
> I disagree with te 1024-65535 rules.
> In my experience you can get it to work without allowing all of these.
Some things tend to break when you leave it out. I can't give you any
examples atm, since I don't recall them :)
> Plus the way you have it setup, if you ever have X running then port
> 6000 is open and I really hate that idea.
Then add deny rules for port 6000 :)
Cheers,
Bart
-- Bart Matthaei bart@dreamflow.nl If at first you don't succeed, redefine success. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
- Next message: Carroll, D. (Danny): "RE: ipfw and it's glory..."
- Previous message: Carroll, D. (Danny): "RE: ipfw and it's glory..."
- In reply to: Carroll, D. (Danny): "RE: ipfw and it's glory..."
- Next in thread: Dag-Erling Smorgrav: "Re: ipfw and it's glory..."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
