Date: Sat, 29 Jun 2002 15:17:24 -0300 From: "Joao Carlos" <jcrr@ieee.org> To: "Luigi Rizzo" <rizzo@icir.org>, "Nielsen" <nielsen@memberwebs.com> Cc: "Terry Lambert" <tlambert2@mindspring.com>, "Ken Ebling" <kebling@us-it.net>, <freebsd-hackers@freebsd.org> Subject: Re: ipfw/dummynet suggestion Message-ID: <001f01c21f99$3c363cc0$1e6eb0c8@pchome> References: <000801c21f1c$029cefe0$0201a8c0@Ken> <3D1D4EB3.9410011@mindspring.com> <20020629170251.65DDB43E13@mx1.FreeBSD.org> <20020629110237.A73787@iguana.icir.org>
next in thread | previous in thread | raw e-mail | index | archive | help
> several viruses do change the MAC address. The only real > security is to have one user per port and filter the ports. > Next step (but not as safe) is to wire down the arp table and only accept > things that are in there (will be easy to implement in the > new ipfw) I think it would be easier to deny all mac address in the ipfw rules except by those that you know, right? --- Joao Carlos jcrr@ieee.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?001f01c21f99$3c363cc0$1e6eb0c8>