From owner-freebsd-bugs Fri Oct 29 15: 8:15 1999 Delivered-To: freebsd-bugs@freebsd.org Received: from ns.mt.sri.com (ns.mt.sri.com [206.127.79.91]) by hub.freebsd.org (Postfix) with ESMTP id 8C57915124 for ; Fri, 29 Oct 1999 15:08:06 -0700 (PDT) (envelope-from nate@mt.sri.com) Received: from mt.sri.com (rocky.mt.sri.com [206.127.76.100]) by ns.mt.sri.com (8.9.3/8.9.3) with SMTP id QAA13828; Fri, 29 Oct 1999 16:08:00 -0600 (MDT) (envelope-from nate@rocky.mt.sri.com) Received: by mt.sri.com (SMI-8.6/SMI-SVR4) id QAA06921; Fri, 29 Oct 1999 16:07:59 -0600 Date: Fri, 29 Oct 1999 16:07:59 -0600 Message-Id: <199910292207.QAA06921@mt.sri.com> From: Nate Williams MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit To: Poul-Henning Kamp Cc: nate@mt.sri.com (Nate Williams), "Ronald F. Guilmette" , freebsd-bugs@FreeBSD.ORG Subject: Re: Some fixes for some non-features of the /etc/rc.firewall script In-Reply-To: <6725.941234248@critter.freebsd.dk> References: <199910292151.PAA06826@mt.sri.com> <6725.941234248@critter.freebsd.dk> X-Mailer: VM 6.34 under 19.16 "Lille" XEmacs Lucid Reply-To: nate@mt.sri.com (Nate Williams) Sender: owner-freebsd-bugs@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > >> The second patch below allows outsiders to connect to your AUTH port (113). > >> I found that allowing this will cut down a lot on the number of pointless > >> "Deny" log messages you will get if you don't have this, because a *lot* > >> of things out in the real world (most notably Sendmail) _will_ try to > >> connect to your local auth port whenever you connect out to them. > > > >Or you can simply ignore them completely w/out logging them, since AUTH > >is a useless protocol, and you really shouldn't have a real AUTH daemon > >running on your box in any case. > > On this topic also consider the "dummy" AUTH server in inetd... Someone (you?) posted one to the mailing list, and/or modified inetd to use a dummy one. I'd have to go look in the archives. However, I haven't had an auth server running on my box for over 3 years, and it hasn't appeared to have hurt anything. :) I can wait the extra 2-3 seconds for the auth server to timeout to get my email. :) Nate To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message