RE: Port 443?

Neil Moore-Smith (nms@crescendo.ltd.uk)
Thu, 8 Oct 1998 21:33:48 +0100

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: B. Craig Taverner: "Different.but.the.same!: Mounting from Linux NFS server with Solaris workstation"
Previous message: Neil Moore-Smith: "RE: Some mail system problem."

>
> You need an extra rule above these which says:
>
> Deny source (outside/any/port 443) --> dest (inside/any addr/any port)
> where SYN=1 and ACK=0

Excellent point. I missed this out in a similar situation some time ago and
got stuffed with a denial-of-service attack. The sad thing is, until I read
your post, I had forgotten about it and would have repeated my mistake!

Thanks

Neil

-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to majordomo@vger.rutgers.edu

Next message: B. Craig Taverner: "Different.but.the.same!: Mounting from Linux NFS server with Solaris workstation"
Previous message: Neil Moore-Smith: "RE: Some mail system problem."