Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 27 Jul 1999 11:53:41 -0600
From:      Nate Williams <>
To:        Achim Patzner <>
Cc:        Nate Williams <>, Julian Elischer <>, "Brian F. Feldman" <green@FreeBSD.ORG>, Matthew Dillon <>, Joe Greco <>, hackers@FreeBSD.ORG, freebsd-ipfw@FreeBSD.ORG
Subject:   Re: securelevel and ipfw zero
Message-ID:  <>
In-Reply-To: <>
References:  <> <> <> <>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
> > (Another thing I just thought of is that this could cause DoS attacks on
> > the system if a user compromised root and then set the limit to a very
> > high number.)
> If you have someone going berzerk as "root" on a firewall you're definitely
> going to have a completely different set of headaches. Why should someone
> start DoS attacks after capturing a firewall? It's like painting the
> fingernails before amputating the hand.

So it was a bad example.  If I had enough brain cells to boil a cup of
water for my soup I'd be able to come up with more 'viable' issues where
modifying the counters is a bad thing. :)


To Unsubscribe: send mail to
with "unsubscribe freebsd-ipfw" in the body of the message

Want to link to this message? Use this URL: <>