[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Fw: Can a daemon listen only on some interfaces?



On Sun, 09 Dec 2001, Guido Hennecke wrote:
>         127.0.0.1  Gateway <your official ip address>   Interface <his
>         externel interface>
> 
> he can reach your service bound to 127.0.0.1. And this without
> activating ip_forward on your computer!

Is this true even if the policy of the forward chain (for ipchains) is set
to deny ? (and the equivalent, for iptables) ?

If it is so, at least the ipmasq package needs an update to take that into
account...

-- 
  "One disk to rule them all, One disk to find them. One disk to bring
  them all and in the darkness grind them. In the Land of Redmond
  where the shadows lie." -- The Silicon Valley Tarot
  Henrique Holschuh



Reply to: