fedora-devel-list@redhat.com
[Top] [All Lists]

Re: RFE: FireKit

Subject: Re: RFE: FireKit
From: BjÃrn Persson
Date: Fri, 24 Jul 2009 19:36:15 +0200
Matthew Woehlke wrote:
> an iptables rule
> that allows stuff if there is a socket that will receive it, otherwise
> can drop

Where's the point in that? To protect against possible security bugs in the 
little piece of TCP code that would otherwise reply with RST, or the little 
piece of UDP code that would just drop the packet anyway? I doubt a security 
bug in the little piece of IPtables code that drops packets is any less 
likely.

BjÃrn Persson

-- 
fedora-devel-list mailing list
fedora-devel-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-devel-list
<Prev in Thread] Current Thread [Next in Thread>