Re: src/etc/rc.firewall simple ${fw_pass} tcp from any to any

看板FB_security作者時間19年前 (2006/11/12 03:41), 編輯推噓0(000)
留言0則, 0人參與, 最新討論串3/4 (看更多)
--- Dan Lukes <dan@obluda.cz> wrote: > Statefull rules can stop the sophisticated intruder, but are often more > vulnerable to DoS attacks. > > Every method has pros and cons ... > Hmm... U mean, when someone creates a lot of states? At least pf can limit that... But here it looks like just the good guys can create a state (from the good-network via the public network to the trusted web sites), so that states can't hurt, I think... -Arne ____________________________________________________________________________________ Cheap talk? Check out Yahoo! Messenger's low PC-to-Phone call rates. http://voice.yahoo.com _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
更多 arne_woerne. 的文章
文章代碼(AID): #15LYTa00 (FB_security)
更多 arne_woerne. 的文章
文章代碼(AID): #15LYTa00 (FB_security)