Hosting Provided By

Re: secure installation

From: Izak Burger <isburger(at)gmail.com>
Date: Thu Aug 16 2007 - 07:59:03 EDT

On 8/16/07, Ondrej Zajicek <santiago@crfreenet.org> wrote:
> And if there is no firewall (or other
> hand-crafted protective measures), then there is no need for
> rp_filter. So on common workstation there is no need for
> rp_filter too.

I also don't see why you need rp_filter on a workstation. A workstation generally has a single default gateway that routes incoming and outgoing traffic. Since the netmask is 0.0.0.0, absolutely any packet is allowed to come from there, so enabling rp_filter would do absolutely nothing.

-- 
To UNSUBSCRIBE, email to debian-security-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Received on Thu Aug 16 07:59:36 2007

This message: [ Message body ]
Next message: paddy(at)panici.net: "Re: secure installation"
Previous message: paddy(at)panici.net: "Re: secure installation"
In reply to: Ondrej Zajicek: "Re: secure installation"
Next in thread: paddy(at)panici.net: "Re: secure installation"
Reply: paddy(at)panici.net: "Re: secure installation"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Sun Oct 07 2007 - 07:52:44 EDT