In message <9303140222 .
COM> you write:
|>Should I allow "random" client ports through? What are the security
| One implication is that anyone with a tunnelling driver can
|run IP tunnelled through your firewall using NS packets as the
| Yes, I have code that does this. ;)
You mean that it could be used to transfer data you don't want to be transfered
to/from your site, right? If I don't hold secrets at my site and just want to
prevent un-authorised access from outside then I shouldn't be concerned with
it (at least not too much), right?
(just this friday we had to eract a firewall due to a breakin in another uni
and I found that I had to let port 53 through from anywere to anywere, at
least for now).
CS System Group, Hebrew University, Jerusalem, Israel