William Jensen wrote on Mon Jul 16, 2001 at 02:30:29PM: > These appear to work, however, am I overlooking something from a > security point of view by allowing any icmp and ip's through?
What do you think is dangeous about allowing ping/traceroute? Neither are be used to establish a service which could be exploited, so why so you care about denying ping / traceroute? Matth¡as -- Matthias Richter --+- stud. soz. & inf. -+-- http://www.uni-leipzig.de --> GPG Public Key: http://www.matthias-richter.de/gpg.ascii <-- · Projekt Deutscher Wortschatz: <URL:http://wortschatz.uni-leipzig.de>
pgpvtwFA6aVTM.pgp
Description: PGP signature
