Re: ssh keyscanning!?
On Thu, Mar 21, 2002 at 10:31:02AM +0000, Karl E. Jorgensen wrote:
> The firewalling I have in place only allows incoming connections for
> ssh. UDP is locked down so only DNS works there. And by mistake (fixed now),
> it also allowed incoming DHCP requests from the internet.
Careful here. The first DHCP request from a freshly booted machine
doesn't carry a local IP address (but either 0.0.0.0 or random crap).
So make sure you don't filter by IP address, but by interface at most.
Daniel.
Reply to: