From owner-freebsd-security Thu Jun 10 13:23:50 1999 Delivered-To: freebsd-security@freebsd.org Received: from jade.chc-chimes.com (jade.chc-chimes.com [206.67.97.83]) by hub.freebsd.org (Postfix) with ESMTP id 80E5415438 for ; Thu, 10 Jun 1999 13:23:24 -0700 (PDT) (envelope-from billf@jade.chc-chimes.com) Received: from localhost (billf@localhost) by jade.chc-chimes.com (8.8.8/8.8.8) with SMTP id QAA11663; Thu, 10 Jun 1999 16:26:04 -0400 (EDT) (envelope-from billf@jade.chc-chimes.com) Date: Thu, 10 Jun 1999 16:26:04 -0400 (EDT) From: Bill Fumerola To: Gregory Carvalho Cc: "freebsd-security@FreeBSD.ORG" Subject: Re: ports and applications In-Reply-To: <375F7453.77C0F526@stcinc.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 10 Jun 1999, Gregory Carvalho wrote: > Using ipfw I am allowing port 80 through the wall (could you imagine if > I denied the good people of Gotham their web fix). Suppose I deny > telnet, but some external server has its telnet server configured for > port 80. Is there a method to prevent the telnet session from operating? This is how I telnetted into my machines at work on a daily basis at school. As for stopping it? Hmmm.. you'd need some application level thing. OR Force your people through a proxy, which is the better choice. - bill fumerola - billf@chc-chimes.com - BF1560 - computer horizons corp - - ph:(800) 252-2421 - bfumerol@computerhorizons.com - billf@FreeBSD.org - To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message