Date: Tue, 28 Jul 1998 01:29:04 -0400 (EDT) From: Snob Art Genre <benedict@echonyc.com> To: Jim Shankland <jas@flyingfox.com> Cc: ben@rosengart.com, security@FreeBSD.ORG Subject: Re: inetd enhancements (fwd) Message-ID: <Pine.GSO.4.02.9807280124550.13278-100000@echonyc.com> In-Reply-To: <199807280440.VAA12658@biggusdiskus.flyingfox.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 27 Jul 1998, Jim Shankland wrote: > Careful there. The sockets API supports binding to a specific > *address*, not interface. If your machine has two interfaces > with addresses A and B, and you bind your server socket to address > B, it will happily accept connections addressed to address B, > but physically arriving via the "A" interface. Hrm, that's no good. But if I'm not mistaken, each interface is configured with its own address. Does this not give the system enough information to reject packets arriving on the wrong interface for their address? Are you sure that the system will accept packets for the wrong interface? Ben "You have your mind on computers, it seems." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.GSO.4.02.9807280124550.13278-100000>