[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Security: FreeBSD vs OpenBSD

To: gustavo@shoptime.com (Luiz Gustavo)
Subject: Re: Security: FreeBSD vs OpenBSD
From: Darren Reed <avalon@coombs.anu.edu.au>
Date: Mon, 4 Feb 2002 18:31:13 +1100 (Australia/ACT)
Cc: misc@openbsd.org

In some mail from Luiz Gustavo, sie said:
> 
> On Mon, Feb 04, 2002 at 01:40:08AM -0200, rss@cin.ufpe.br wrote:
>  
> > >  About < 1023 *issue* theres one good explanation from Theo for
> > >  why not OpenBSD developers dont like it.   
> > 
> > Sure, you must not use this solution in user shell machines ;-)
> > And really... if you break in any user, you can start daemons
> > in priv ports...
> > 
> > And I prefer the redirect stuff... you can block some
> > range of hight ports and use it for redirecting. Or start a
> > jail for every service.
> 
>  I dont think abuse of rdr on servers looks good, why you will need
>  pf *running* on every server?

And the problem is?

I know companies that use IPFilter on every server/desktop
running Unix.

Darren

Follow-Ups:
- Re: Security: FreeBSD vs OpenBSD
  - From: Chris <cl@escape.ca>
- Re: Security: FreeBSD vs OpenBSD
  - From: Luiz Gustavo <gustavo@shoptime.com>
- Re: Security: FreeBSD vs OpenBSD
  - From: Rossam Souza Silva <rss@cin.ufpe.br>

References:
- Re: Security: FreeBSD vs OpenBSD
  - From: Luiz Gustavo <gustavo@shoptime.com>

Prev by Date: Re: correct addition of new manpages
Next by Date: nat/pf redirection problems
Prev by thread: Re: Security: FreeBSD vs OpenBSD
Next by thread: Re: Security: FreeBSD vs OpenBSD
Index(es):
- Date
- Thread