Date: Wed, 19 Sep 2001 14:37:10 -0600 From: Brett Glass <brett@lariat.org> To: Erick Mechler <emechler@techometer.net> Cc: security@FreeBSD.ORG Subject: Re: Defense against "Code Rainbow" Message-ID: <4.3.2.7.2.20010919143532.05986c30@localhost> In-Reply-To: <20010919105553.J3881@techometer.net> References: <4.3.2.7.2.20010919112438.0598b8b0@localhost> <4.3.2.7.2.20010919112438.0598b8b0@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
At 11:55 AM 9/19/2001, Erick Mechler wrote: >What about using TCP wrapers? I'm not sure of the performance implications >of doing so, but maybe it's worth a shot. Apache doesn't play very well with TCP wrappers, as it likes to manage its own sockets and process pool. Also, a wrapper wouldn't eliminate the overhead of opening a socket. I'm trying to block the packets before that happens. --Brett To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4.3.2.7.2.20010919143532.05986c30>