"Slighter, Tim" wrote: > you really should try and specify that the rule "drops" instead of reject so > that the potential intruder is not provided with any information about their > attempted connection. Make sure to change the sendmail configuration to disable ident lookups before trying this. If you do it with a default sendmail configuration (at least on Red Hat Linux), you will get a 30 second timeout whenever you try to send anyone mail (and presumably when you receive mail, if you use drop on outgoing connections - not that you would :-). Paul http://paulgear.webhop.net ---------------------------------------------------------------------------- This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com
This archive was generated by hypermail 2b30 : Fri Dec 07 2001 - 14:29:45 PST