mobility and firewall
Christoph Georgi
christoph.georgi at web.de
Sat Jun 4 01:45:13 CDT 2005
Ivan Krstic wrote:
<snip>
>
> [0] Restricting inbound traffic to RELATED, ESTABLISHED by default would
> presumably provide you some protection against potential flaws in the
> TCP/IP stack at the expense of exposing you to potential flaws in
> netfilter, which makes it seem like an exercise in futility to me.
>
I'm rather exposed to potential flaws in netfilter, than in the TCP/IP
stack, as bugfixes are more likely for netfilter, but not for tcp/ip?!
christoph
--
Christoph Georgi
-----------------------------
email. christoph.georgi at web.de
fon. +64 (0)9 815 8259
registered linux user #380268
ubuntu 5.04 (ubuntu.com)
More information about the ubuntu-devel
mailing list