Date: Mon, 1 Nov 1999 23:22:50 +0100 From: Ollivier Robert <roberto@keltia.freenix.fr> To: security@FreeBSD.ORG Subject: Re: hole(s) in default rc.firewall rules Message-ID: <19991101232250.C39857@keltia.freenix.fr> In-Reply-To: <381DB3B2.10002A43@algroup.co.uk> References: <381DAEE9.75C2EDA5@algroup.co.uk> <46576.941469757@verdi.nethelp.no> <381DB3B2.10002A43@algroup.co.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
According to Adam Laurie: > blocking UDP traffic to any low port. DNS replies come in on high ports > (at least this is true on the half dozen or so boxes that I've Default before bind 8.2.something was to use port 53 for all answers (from server to server). -- Ollivier ROBERT -=- FreeBSD: The Power to Serve! -=- roberto@keltia.freenix.fr FreeBSD keltia.freenix.fr 4.0-CURRENT #74: Thu Sep 9 00:20:51 CEST 1999 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19991101232250.C39857>