Date: 12 Feb 2003 22:37:18 +0000 From: =?ISO-8859-1?Q?Andr=E9?= Ramos <andre.ramos@netcabo.pt> To: Stephen Hilton <nospam@hiltonbsd.com> Cc: Redmond Militante <r-militante@northwestern.edu>, freebsd-questions@FreeBSD.ORG Subject: Re: portsentry in combination with ipfilter Message-ID: <1045089438.13088.3.camel@localhost> In-Reply-To: <20030211235530.376a5763.nospam@hiltonbsd.com> References: <20030212043806.GA1267@darkpossum> <3662.10.0.0.2.1045025758.squirrel@mail.karamazov.org> <20030212050509.GA1381@darkpossum> <20030211235530.376a5763.nospam@hiltonbsd.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 2003-02-12 at 05:55, Stephen Hilton wrote: > What bothers me about this method of defense is the possibilty > of an attacker causing a DOS by spoofing their source scan IP > and causing your system to deny traffic from a vaild host like > your upstream DNS server. You can add your DNS server to the portsentry.ignore configuration file so that it never get's blocked. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1045089438.13088.3.camel>