RFE: FireKit
Björn Persson
bjorn at xn--rombobjrn-67a.se
Fri Jul 24 17:36:15 UTC 2009
Matthew Woehlke wrote:
> an iptables rule
> that allows stuff if there is a socket that will receive it, otherwise
> can drop
Where's the point in that? To protect against possible security bugs in the
little piece of TCP code that would otherwise reply with RST, or the little
piece of UDP code that would just drop the packet anyway? I doubt a security
bug in the little piece of IPtables code that drops packets is any less
likely.
Björn Persson
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 190 bytes
Desc: This is a digitally signed message part.
URL: <http://listman.redhat.com/archives/fedora-devel-list/attachments/20090724/556f6ed3/attachment.sig>
More information about the fedora-devel-list
mailing list