Date: Fri, 30 Oct 1998 07:07:59 +1300 From: "Dan Langille" <junkmale@xtra.co.nz> To: Mike Jenkins <mjenkins@carp.gbr.epa.gov> Cc: freebsd-security@FreeBSD.ORG Subject: Re: Connections succeed even though denied by IPFW Message-ID: <199810291807.HAA15796@witch.xtra.co.nz> In-Reply-To: <199810291642.KAA12888@carp.gbr.epa.gov> References: <19981029143547.A15193@cityip.co.za>
next in thread | previous in thread | raw e-mail | index | archive | help
On 29 Oct 98, at 10:42, Mike Jenkins wrote: > Brings back memories of the classic packet filtering paper by Brent > Chapman entitled "Network (In)Security Through IP Packet Filtering". > Things have improved with packet filters but it can still be difficult to > get it right. Of course, you might run a scanner (nmap) to see if your > rules are working. Is it correct to assume that firewall proxies are not suspectible the same problem? I don't think so. That's why I'm curious as to why Chapman mentions packet filtering, not proxies. -- Dan Langille The FreeBSD Diary - my [mis]adventures http://www.FreeBSDDiary.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199810291807.HAA15796>