From owner-freebsd-security Mon Jul 7 16:21:09 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id QAA15152 for security-outgoing; Mon, 7 Jul 1997 16:21:09 -0700 (PDT) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id QAA15145 for ; Mon, 7 Jul 1997 16:21:04 -0700 (PDT) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id JAA25320; Tue, 8 Jul 1997 09:20:54 +1000 (EST) Date: Tue, 8 Jul 1997 09:20:53 +1000 (EST) From: "Daniel O'Callaghan" To: Jim Shankland cc: robert@cyrus.watson.org, security@FreeBSD.ORG Subject: Re: Security Model/Target for FreeBSD or 4.4? In-Reply-To: <199707072246.PAA25097@biggusdiskus.flyingfox.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-security@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Mon, 7 Jul 1997, Jim Shankland wrote: > > > something along the lines of: > > > > > > net.inet.ip. > > > > > > and then using it like > > > > > > sysctl -w net.inet.ip.25=`id smtp` > > > > Unfortunately, that doesn't address the distinction between TCP and UDP > > services.. I'm not sure that is a huge issue, but it seems relevant. Julian Assange wrote patches for IPFW which did this sort of thing in December, 1996, posted to -hackers. Danny