On 17-Aug-99 Rodney W. Grimes wrote: > Would I use it in place of ipfw for what the original person asked > about, no way, not in a million years. If I want a box secure it > is going to have ipfw or ipfilter rules down to the last detail. > Why, well, it would prevent some junior admin from defeating policy > by starting up something we don't want anyone to connect to on that > box, like ftpd... > > IMHO, this know would give some folks a false since of security, > but not so much that I would argue about keeping it out. Well, I'm all in favour for allowing people to shoot themselves in the foot :) IMHO its OK if there is a warning about it. --- Daniel O'Connor software and network engineer for Genesis Software - http://www.gsoft.com.au "The nice thing about standards is that there are so many of them to choose from." -- Andrew Tanenbaum
PGP signature- Re: Dropping connections without RST Archie Cobbs
- Re: Dropping connections without RST Brian W. Buchanan
- Re: Dropping connections without RST Archie Cobbs
- Re: Dropping connections without RST Rodney W. Grimes
- Re: Dropping connections without RST Warner Losh
- Re: Dropping connections without RST Daniel O'Connor
- Re: Dropping connections without RST Rodney W. Grimes
- Re: Dropping connections without RST Rodney W. Grimes
- Re: Dropping connections without RST Daniel O'Connor
- Re: Dropping connections without RST Rodney W. Grimes
- Re: Dropping connections without RST Daniel O'Connor
- Re: Dropping connections without RST Geoff Rehmet
- Re: Dropping connections without R... Rodney W. Grimes
- Re: Dropping connections without RST Matt Crawford
- Re: Dropping connections without RST Leif Neland
- Re: Dropping connections without RST Ollivier Robert
- Re: Dropping connections without R... Daniel O'Connor
- Re: Dropping connections without RST Warner Losh
- Re: Dropping connections without RST Garrett Wollman
- RE: Dropping connections without RST Geoff Rehmet
- Re: Dropping connections without RST Archie Cobbs
