From owner-freebsd-security Mon Jun 24 07:29:21 1996 Return-Path: owner-security Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id HAA24582 for security-outgoing; Mon, 24 Jun 1996 07:29:21 -0700 (PDT) Received: from brasil.moneng.mei.com (brasil.moneng.mei.com [151.186.109.160]) by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id HAA24574; Mon, 24 Jun 1996 07:29:16 -0700 (PDT) Received: (from jgreco@localhost) by brasil.moneng.mei.com (8.7.Beta.1/8.7.Beta.1) id JAA05533; Mon, 24 Jun 1996 09:28:02 -0500 From: Joe Greco Message-Id: <199606241428.JAA05533@brasil.moneng.mei.com> Subject: Re: I need help on this one - please help me track this guy down! To: guido@gvr.win.tue.nl (Guido van Rooij) Date: Mon, 24 Jun 1996 09:28:01 -0500 (CDT) Cc: jgreco@brasil.moneng.mei.com, jkh@time.cdrom.com, hackers@FreeBSD.ORG, security@FreeBSD.ORG, ache@FreeBSD.ORG In-Reply-To: <199606241417.QAA12781@gvr.win.tue.nl> from "Guido van Rooij" at Jun 24, 96 04:17:57 pm X-Mailer: ELM [version 2.4 PL24] Content-Type: text Sender: owner-security@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > > Better yet, do not allow just "anything" else... > > > > I block the RFC1597 "private internets" and 127.0.0.0/8 and 0.0.0.0/8 on > > both inbound and outbound filters, in addition to blocking inbound addresses > > with my network numbers.. basically they don't survive my routers :-) > > > > We do too..but for the sake of simplicity I didn't mention the RFC1597 > addresses. The 0.0.0.0/8 is new to me..what is its purpose? It's a reserved, unassigned network. I don't have an RFC handy to check, but I believe that the reasoning might have been because of the "magic" "address" 0.0.0.0 that it contains. It seems simpler to lose it than to be in doubt, and I think I saw a detailed argument at one point, anyways... ;-) ... Joe ------------------------------------------------------------------------------- Joe Greco - Systems Administrator jgreco@ns.sol.net Solaria Public Access UNIX - Milwaukee, WI 414/546-7968