[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: RFE: FireKit



Matthew Woehlke wrote:
> an iptables rule
> that allows stuff if there is a socket that will receive it, otherwise
> can drop

Where's the point in that? To protect against possible security bugs in the 
little piece of TCP code that would otherwise reply with RST, or the little 
piece of UDP code that would just drop the packet anyway? I doubt a security 
bug in the little piece of IPtables code that drops packets is any less 
likely.

Björn Persson

Attachment: signature.asc
Description: This is a digitally signed message part.


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]