Re: setting access rights to priviledged ports

Anthony Barbachan (barbacha@Hinako.AMBusiness.com)
Tue, 20 Oct 1998 02:22:12 -0400

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Ugo Delchini: "KNFSD problem"
Previous message: Chris Wedgwood: "Re: Dynamic IP hack (PR#294)"

-----Original Message-----
From: Olaf Titz <olaf@bigred.inka.de>
To: linux-kernel@vger.rutgers.edu <linux-kernel@vger.rutgers.edu>
Date: Saturday, October 17, 1998 11:54 PM
Subject: Re: setting access rights to priviledged ports

>> >ipfwadm -I -a accept -r 10025 -p tcp -S 0.0.0.0/0 -D (youtIP)/32 25
>> >
>> >set sendmail to use port 10025 and you are done.
>
>Not good. Everyone can bind to that high port, so when sendmail is not
>running, any luser could set up his own and steal peoples' mail.
>
>olaf
>

I'd expect sendmail to be running before any users even login. Besides with
some modifications sendmail should be easily able to be placed in
/etc/inetd.conf thus inetd would have control over access to the 10025 port.

>
>-
>To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
>the body of a message to majordomo@vger.rutgers.edu
>Please read the FAQ at http://www.tux.org/lkml/
>

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Ugo Delchini: "KNFSD problem"
Previous message: Chris Wedgwood: "Re: Dynamic IP hack (PR#294)"