Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 10 Nov 2004 09:22:39 -0500 (EST)
From:      "Michael Butler" <imbutler@comcast.net>
To:        "FreeBSD Stable" <freebsd-stable@freebsd.org>
Subject:   Re: 5.3-RELEASE kde 3.3 and pf
Message-ID:  <2894.192.168.1.10.1100096559.squirrel@192.168.1.10>
In-Reply-To: <20041110140614.GO85877@weirdos.oban.frmug.org>
References:  <20041110134853.GB87953@sr.se> <20041110140614.GO85877@weirdos.oban.frmug.org>

next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

> Maybe you should allow everything on lo0, in and out.

127/8 should always be allowed on the loopback interface,
127/8 should always be dropped from all other interfaces.

I am "uncomfortable" saying that everything should be allowed ..

Michael Butler CISSP
Security Consultant
Savvis Communications
www.savvis.net
PGP Key ID: 0x5E873CC5


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (FreeBSD)

iD8DBQFBkiQviJykeV6HPMURAuGvAKCxPvD2JBnymAZi6DSGv+h39whQoQCfSp+x
TmQ7x0bqDw49rGjemk8WQUg=
=Y6/E
-----END PGP SIGNATURE-----



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?2894.192.168.1.10.1100096559.squirrel>