Great Circle Associates Firewalls
(October 1997) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: DNS on the Firewall - security problem
From: "Perry E. Metzger" <perry @ piermont . com>
Date: Sun, 12 Oct 1997 14:46:05 -0400
To: Darren Reed <avalon @ coombs . anu . edu . au>
Cc: adam @ homeport . org (Adam Shostack), ahuger @ silence . secnet . com, firewall-wizards @ nfr . net, firewalls @ greatcircle . com
In-reply-to: Your message of "Sun, 12 Oct 1997 17:29:56 +1000." <199710120731 . CAA14265 @ nfr . net>
Reply-to: perry @ piermont . com 
Darren Reed writes:
> > Sorry, the kernel kludges are not available.
> 
> You might want to have a look around for implementations already available
> which do this.  I'm pretty sure this has been done by a few people already,
> once for Linux and one for FreeBSD.

There is a standard NetBSD kernel build option that I added a long
time ago to let non-privileged processes bind low numbered ports.

Perry
Indexed By Date Previous: (no subject)
From: PHuffman11 @ aol . com
Next: Re: DNS on the Firewall - security problem
From: Aleph One <aleph1 @ dfw . net>
Indexed By Thread Previous: Re: DNS on the Firewall - security problem
From: Gaddy Gumbao <succesor @ mnl . sequel . net>
Next: Re: DNS on the Firewall - security problem
From: Aleph One <aleph1 @ dfw . net>
Google
 
Search Internet Search www.greatcircle.com