From owner-freebsd-questions Tue Jan 5 17:34:26 1999 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id RAA20727 for freebsd-questions-outgoing; Tue, 5 Jan 1999 17:34:26 -0800 (PST) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from br-inc.com (br-inc.com [207.86.84.34]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id RAA20719 for ; Tue, 5 Jan 1999 17:34:23 -0800 (PST) (envelope-from coyne@br-inc.com) Received: from mailman2.moinet.com ([155.191.23.247]) by br-inc.com via smtpd (for hub.FreeBSD.ORG [204.216.27.18]) with SMTP; 6 Jan 1999 01:33:56 UT Received: from ftw9vnssvr.moinet.com (ftw9vnssvr.moinet.com [155.191.17.98]) by br-inc.com (8.8.7/8.8.5) with SMTP id TAA25385 for ; Tue, 5 Jan 1999 19:33:56 -0600 (CST) Received: by ftw9vnssvr.moinet.com with VINES-ISMTP; Tue, 5 Jan 1999 19:33:55 CST Date: Tue, 5 Jan 1999 19:24:13 CST Message-ID: X-Priority: 3 (Normal) To: From: "Paul Coyne" Reply-To: Subject: ipfw and natd and URL filter X-Incognito-SN: 3019 X-Incognito-Version: 4.25.288 MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Any suggestions on how to filter URL's? I know I can filter via IP address, but I need to be able to filter a complete URL, and the list will be 2-4MB worth of URL's . e.g. if http://www.whatever.com/~users/badstuff must be filtered, but http://www.whatever.com/~users/goodstuff shouldn't be: This requires the packets to be reassembled to determine the complete URL to base an accept or deny , so ipfw doesn't work (I think). Thanks, Paul ------------- Original Text From: "Ludwig Pummer" , on 1/5/99 6:00 PM: At 10:53 AM 1/5/99 , Gustavo Vieira G C Rios wrote: >Hi, folks, i am trying to increase my system security, but the main >problem i would like to solve is: >I DON'T wanna my user to send their passwords via a connect over >internet. for instance, when getting email they need to send it! Isn't >there any way to send this passwd encrypted? The same happens with ftp, >etc. For shell session i am using ssh, but how to do about other >services ? You could just use the SSH secure connection method. SSH lets you redirect a local port on your machine, encrypts that, sends it to the SSH server you're connected to, and that sends it to wherever. I use it to pick up my IMAP mail from work, where absolutely no outside connections using passwords are allowed. And my brother SSHs into here to get his POP mail and send it with SMTP. I'm using Cedomir Igaly's SSH client for Windows v2.101 (searching for "cedomir igaly ssh" on yahoo always finds it for me). There's a newer version available with more options, but it seems to have a problem using RSA keys, so I use my old v2.101. --Ludwig Pummer ( ludwigp@bigfoot.com ) ICQ UIN: 692441 ( ludwigp@email.com ) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message