Date: Mon, 02 Jun 1997 04:33:16 -0300 From: Harlan Stenn <Harlan.Stenn@pfcs.com> To: Eivind Eklund <perhaps@yes.no> Cc: hackers@FreeBSD.ORG Subject: Re: Improvements to rc.firewall? Message-ID: <5827.865240396@mumps.pfcs.com> In-Reply-To: Your message of "Mon, 02 Jun 1997 09:39:56 %2B0200." <199706020739.JAA18950@bitbox.follo.net>
next in thread | previous in thread | raw e-mail | index | archive | help
I "sort of" tested them, and they worked for me. I checked this out by doing a tcpdump of my ppp link, and looked at all of the DNS traffic. Responses to my queries came in to *my* port 53. Independent of whether or not my suggested rule is wrong, the old rule will give free reign to anybody who sends UDP packets from their NTP or DNS ports. H
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5827.865240396>