Re: ipfw l b for users ?

Warner Losh (imp@village.org)
Thu, 15 Feb 1996 08:53:38 -0700

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Eric Plante: "Re: Conversion to ELF"
Previous message: Carsten Paeth: "Re: 1.3.63 & no SYN ?"
Maybe in reply to: Herbert Rosmanith: "ipfw l b for users ?"
Next in thread: Raul Miller: "Re: ipfw l b for users ?"

: They can do cat /proc/net/ip_blocking, too. There is not much security gain
: from hiding those rules.

Those in the firewall business will disagree with that assertion.
They will tell you that the less an intruder knows, the better. They
will tell you the more they have to do to get through something the
better. Not because it takes them more time, although that is a
secondary consideration, but because there is more change for log
entries of these activities to show up and catch the person.

Warner

Next message: Eric Plante: "Re: Conversion to ELF"
Previous message: Carsten Paeth: "Re: 1.3.63 & no SYN ?"
Maybe in reply to: Herbert Rosmanith: "ipfw l b for users ?"
Next in thread: Raul Miller: "Re: ipfw l b for users ?"