From owner-freebsd-security  Tue Oct  3 10:32:13 2000
Delivered-To: freebsd-security@freebsd.org
Received: from orthanc.ab.ca (207-167-15-66.dsl.worldgate.ca [207.167.15.66])
	by hub.freebsd.org (Postfix) with ESMTP id 3114B37B66C
	for <security@FreeBSD.ORG>; Tue,  3 Oct 2000 10:32:07 -0700 (PDT)
Received: from orthanc.ab.ca (localhost [127.0.0.1])
	by orthanc.ab.ca (8.11.0/8.11.0.Beta3) with ESMTP id e93HVRE59359;
	Tue, 3 Oct 2000 11:31:27 -0600 (MDT)
Message-Id: <200010031731.e93HVRE59359@orthanc.ab.ca>
To: David Pick <D.M.Pick@qmw.ac.uk>
Cc: security@FreeBSD.ORG
Subject: Re: cvs commit: src/etc inetd.conf 
In-reply-to: Your message of "Tue, 03 Oct 2000 18:16:12 BST."
             <E13gVfo-0006bL-00@xi.css.qmw.ac.uk> 
Date: Tue, 03 Oct 2000 11:31:27 -0600
From: Lyndon Nerenberg <lyndon@orthanc.ab.ca>
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

>>>>> "David" == David Pick <D.M.Pick@qmw.ac.uk> writes:

    David> Sorry, I don't get this. If sendmail attempts to call the
    David> "auth" port on the sending machine and gets a response it
    David> should be happy. If it gets no response (after a time-out)
    David> it would be entitled to retry a few times in case of packet
    David> loss.

No it wouldn't. TCP takes care of the retries for you. If the auth
service is blocked by a firewall the firewall will usually eat the SYN
packets, and you will never get a RST.

--lyndon


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message