Date: Sat, 01 Apr 2000 19:12:00 -0500 From: Jim Durham <durham@w2xo.pgh.pa.us> To: Roger Marquis <marquis@roble.com> Cc: security@FreeBSD.ORG Subject: Re: FTP with firewall rules Message-ID: <38E69050.362142E3@w2xo.pgh.pa.us> References: <Pine.GSO.3.96.1000401104013.26600C-100000@roble2.roble.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Roger Marquis wrote: > > > Passive mode makes things like building ports difficult. > > Try adding this to /etc/make.conf: > > FTP_PASSIVE_MODE=YES > FETCH_BEFORE_ARGS=-p > > -- > This is a good tip. Thanks. I will probably do this, but I was just hoping that a someone had a rule set that would be relatively secure (I realize there is no absolute here). About all I've been able to accomplish is to put the rule late in the rule set so that a lot of things are disallowed before hand. Jim Durham To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?38E69050.362142E3>