From owner-freebsd-security Mon Nov 1 14:40: 9 1999 Delivered-To: freebsd-security@freebsd.org Received: from frmug.org (frmug-gw.frmug.org [193.56.58.252]) by hub.freebsd.org (Postfix) with ESMTP id 096A314FE6 for ; Mon, 1 Nov 1999 14:39:54 -0800 (PST) (envelope-from roberto@keltia.freenix.fr) Received: (from uucp@localhost) by frmug.org (8.9.3/frmug-2.5/nospam) with UUCP id XAA03320 for security@FreeBSD.ORG; Mon, 1 Nov 1999 23:39:48 +0100 (CET) (envelope-from roberto@keltia.freenix.fr) Received: by keltia.freenix.fr (Postfix, from userid 101) id 857208711; Mon, 1 Nov 1999 23:22:50 +0100 (CET) Date: Mon, 1 Nov 1999 23:22:50 +0100 From: Ollivier Robert To: security@FreeBSD.ORG Subject: Re: hole(s) in default rc.firewall rules Message-ID: <19991101232250.C39857@keltia.freenix.fr> Mail-Followup-To: security@FreeBSD.ORG References: <381DAEE9.75C2EDA5@algroup.co.uk> <46576.941469757@verdi.nethelp.no> <381DB3B2.10002A43@algroup.co.uk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii User-Agent: Mutt/1.0pre2i In-Reply-To: <381DB3B2.10002A43@algroup.co.uk> X-Operating-System: FreeBSD 4.0-CURRENT/ELF AMD-K6/200 & 2x PPro/200 SMP Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org According to Adam Laurie: > blocking UDP traffic to any low port. DNS replies come in on high ports > (at least this is true on the half dozen or so boxes that I've Default before bind 8.2.something was to use port 53 for all answers (from server to server). -- Ollivier ROBERT -=- FreeBSD: The Power to Serve! -=- roberto@keltia.freenix.fr FreeBSD keltia.freenix.fr 4.0-CURRENT #74: Thu Sep 9 00:20:51 CEST 1999 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message