[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Proactive Firewall - PF

To: misc@openbsd.org
Subject: Re: Proactive Firewall - PF
From: Henning Brauer <lists-openbsd@bsws.de>
Date: Wed, 19 Jun 2002 11:17:09 +0200
Content-Disposition: inline
Mail-Followup-To: misc@openbsd.org
References: <5.1.1.6.2.20020619081216.037cfc98@mail.cairns.net.au>

On Wed, Jun 19, 2002 at 08:23:21AM +1000, Michael Dunne wrote:
> Basicly its a daemon that listens to the pflog device and depending on 
> certain rules, it automaticly adds a rule to PF to block them, such as port 
> scanning.

bad bad bad bad idea. I fake yuour IP and do something nasty, you are locked
out. continue with bigger IP ranges as src IP. nice DoS, not requiring
noticeable power/bandwidth/... on my side.

References:
- Proactive Firewall - PF
  - From: Michael Dunne <mickydee@cairns.net.au>

Prev by Date: Problems booting openbsd3.1 on wd1a
Next by Date: Re: Problems booting openbsd3.1 on wd1a
Prev by thread: Re: Proactive Firewall - PF
Next by thread: OT: OsX Ethernet settings for Macs behind OpenBSD firewalls
Index(es):
- Date
- Thread