Date: Sun, 30 Jun 1996 23:01:57 +0200 (MET DST) From: Ollivier Robert <roberto@keltia.freenix.fr> To: imp@village.org (Warner Losh) Cc: freebsd-current@FreeBSD.ORG (FreeBSD Current Users' list) Subject: Re: Firewalling DNS TCP (was Re: IPFW bugs?) Message-ID: <199606302101.XAA00568@keltia.freenix.fr> In-Reply-To: <199606301944.NAA00922@rover.village.org> from Warner Losh at "Jun 30, 96 01:44:44 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
It seems that Warner Losh said: > comp.protocols.tcp-ip.domain) that concluded this is a *BAD* idea. If > you have any large records, they will be truncated by this and could > lead to bogus mail delivery (if the remote end doesn't properly detect > the truncated bit). It really buys you nothing unless you and all of That what I said. We are in agreement about the uselessness of filtering TCP:53. I had to fight with my boss (I was security consultant till friday) because he insisted to block it... -- Ollivier ROBERT -=- The daemon is FREE! -=- roberto@keltia.freenix.fr FreeBSD keltia.freenix.fr 2.2-CURRENT #12: Sun Jun 30 14:10:07 MET DST 1996
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199606302101.XAA00568>