RE: attacks

To: <firewall38@lycos.com>, "'debian'" <debian-firewall@lists.debian.org>
Subject: RE: attacks
From: "Jeff Bonner" <jeff@integralogic.com>
Date: Tue, 4 Jun 2002 12:40:54 -0400
Message-id: <[🔎] 000f01c20be6$9bea4380$0200a8c0@JEFF>
In-reply-to: <[🔎] HAANBBFNJICMMAAA@mailcity.com>

After seeing my reply on the list, I realized I didn't make
a rather important point:  you wouldn't have to block 0-19
explicitly, if your firewall uses a default policy of DROP
(or REJECT) on all INPUT.

This is probably the better way to go:  deny everything,
and only allow what you need to get through.  This could
even be extended to include FORWARD and OUTPUT if you're
particularly concerned.

Jeff Bonner



-- 
To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

References:
- attacks
  - From: "sim ton" <firewall38@lycos.com>

Prev by Date: Re: attacks
Next by Date: RE: attacks
Previous by thread: RE: rp_filter (was: `attacks')
Next by thread: iptable script ive been trying to get working
Index(es):
- Date
- Thread