Date: Tue, 19 Jul 2005 19:05:04 -0400 (EDT) From: Francisco Reyes <lists@natserv.com> To: olli@lurza.secnetix.de Cc: freebsd-ipfw@freebsd.org Subject: Re: Trying to understand dynamic rules Message-ID: <20050719185445.A47246@zoraida.natserv.net>
next in thread | raw e-mail | index | archive | help
Oliver Fromme olli at lurza.secnetix.de wrote: >It's possible, but it's probably _not_ a good idea, because >an attacker can easily perform a denial-of-service attack >against your machine. For example, he can make several >connection attempts to your machine, using -- say -- the IP >addresses of your DNS servers as source IPs Thanks for the warning. Noted. How would such a rule look like? Although in this particular scenario I agree with you I do think it may be a usefull rule to know. Please CC since I am not on the list.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050719185445.A47246>