Date: Sun, 21 Sep 1997 11:05:22 -0700 (PDT) From: Alex <garbanzo@hooked.net> To: dmaddox@scsn.net Cc: current@FreeBSD.ORG Subject: Re: Problems with -current ppp Message-ID: <Pine.BSF.3.96.970921110345.413E-100000@zippy.dyn.ml.org> In-Reply-To: <19970921110054.48267@scsn.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 21 Sep 1997, Donald J. Maddox wrote: > Ok. My IP addres is dynamically assigned by my ISP (scsn.net), so the most > I can tell you is that it will be ppp???.coladlp?.scsn.net. I usually only > use the PPP connection long enough to get my email, then kill it. Most > incoming connections are denied by tcp wrappers. Good luck :-) TCP Wrappers are kinda a moot point, as that's not where the hole lies. That's like putting a deadbolt on the back door, and leaving the front one wide open. > Seriously, I understand the need for security in ppp, and I would rather have > it secureable even if it means a little inconvenience (like having to type a > password). However, since the window of insecurity is so small in this case, > if I can trade security for convenience, I will. Uh, this isn't exactly a small hole, especially if you run it as root (not suid). > This is not an appeal to have ppp's security enhancements reverted. Clearly, > making ppp more secure is a Good Thing. Yes. - alex
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.970921110345.413E-100000>