Date: Fri, 13 Nov 1998 16:24:34 -0500 (EST) From: spork <spork@super-g.com> To: "Kurt D. Zeilenga" <Kurt@OpenLDAP.Org> Cc: freebsd-security@FreeBSD.ORG Subject: Re: securelib Message-ID: <Pine.BSF.4.00.9811131037450.29800-100000@super-g.inch.com> In-Reply-To: <3.0.5.32.19981112214317.00a03840@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, 12 Nov 1998, Kurt D. Zeilenga wrote: (how to wrap udp question deleted) > tcp_wrappers' -lwrap? It's API is independent of transport protocol > and only requires adding a small tidbit of code. For those that don't code, how much of a snippet? I found that Wietse's portmap does compile OK, but what about the rest of the NFS suite? I have a second, closed network for NFS, but portmap, mountd, and nfsd want to bind to every available address, so I figure the next best thing to do is at least limit connections to the one machine I need to talk to... I've tried IPFW, but yech, it's nearly impossible to block all that RPC stuff properly. What are other folks doing in this situation? With nics so cheap these days, building a seperate 100MB net for NFS is a nice solution, I'd just like to do it safely... Thanks, Charles > Kurt > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.00.9811131037450.29800-100000>