From owner-freebsd-questions  Sun Sep 12  9: 6:39 1999
Delivered-To: freebsd-questions@freebsd.org
Received: from flood.ping.uio.no (flood.ping.uio.no [129.240.78.31])
	by hub.freebsd.org (Postfix) with ESMTP
	id BD48014EE4; Sun, 12 Sep 1999 09:06:34 -0700 (PDT)
	(envelope-from des@flood.ping.uio.no)
Received: (from des@localhost)
	by flood.ping.uio.no (8.9.3/8.9.3) id SAA14371;
	Sun, 12 Sep 1999 18:06:29 +0200 (CEST)
	(envelope-from des)
To: nate@mt.sri.com (Nate Williams)
Cc: Dag-Erling Smorgrav <des@flood.ping.uio.no>,
	Ben Smithurst <ben@scientia.demon.co.uk>,
	"Jeremy L. Ramirez" <jramirez@digicomsystems.net>,
	dev-null@ns1.digicomsystems.net, freebsd-questions@FreeBSD.ORG,
	freebsd-security@FreeBSD.ORG
Subject: Re: How to prevent motd including os info
References: <4.2.0.58.19990911151659.00aa8d60@ns1.digicomsystems.net> 	<19990912012524.B41509@lithium.scientia.demon.co.uk> 	<xzpn1usmka2.fsf@flood.ping.uio.no> <199909121534.JAA18584@mt.sri.com>
From: Dag-Erling Smorgrav <des@flood.ping.uio.no>
Date: 12 Sep 1999 18:06:28 +0200
In-Reply-To: Nate Williams's message of "Sun, 12 Sep 1999 09:34:08 -0600"
Message-ID: <xzpzoys15dn.fsf@flood.ping.uio.no>
Lines: 12
X-Mailer: Gnus v5.5/Emacs 19.34
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Nate Williams <nate@mt.sri.com> writes:
> > # ipfw add 1 deny tcp from any to any in tcpflags syn,fin
> Except if you do this the box is unable to provide *ANY* external
> sevices, including email and/or DNS service. :(

Not true. I've had two moderately busy IRC servers (one of them
averages 700 clients, the other twice that) running with this ipfw
rule for two or three months without a hitch.

DES
-- 
Dag-Erling Smorgrav - des@flood.ping.uio.no


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message