On Mon, 2009-11-09 at 16:41 -0500, Timo Sirainen wrote:
> On Mon, 2009-11-09 at 09:01 +0100, Steffen Kaiser wrote:
> > > Any thoughts?
> >
> > The only two remarks I have are that some well-known IPs should be able to
> > bypass this check, e.g. NATed gateways of the organisation
>
> Hmm. That
On Mon, 2009-11-09 at 09:01 +0100, Steffen Kaiser wrote:
> > Any thoughts?
>
> The only two remarks I have are that some well-known IPs should be able to
> bypass this check, e.g. NATed gateways of the organisation
Hmm. That seems like way too much trouble. Even just on/off setting
annoys me.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Fri, 6 Nov 2009, Timo Sirainen wrote:
Any thoughts?
The only two remarks I have are that some well-known IPs should be able to
bypass this check, e.g. NATed gateways of the organisation and that
external IDSs (e.g. fail2ban) should be able to
