IPfilter
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: IPFilter 5.0.0 - feedback?

from [Darren Reed] [Permanent Link][Original]
To: Jaroslaw Rafa <raj@ap.krakow.pl>
Subject: Re: IPFilter 5.0.0 - feedback?
From: Darren Reed <darrenr@reed.wattle.id.au>
Date: Sat, 13 Jan 2007 20:22:36 +0100
Cc: Casper.Dik@Sun.COM, ipfilter@coombs.anu.edu.au
Delivered-to: sp-com-lists@consult.net
Delivered-to: ipfilter-list@securepoint.com
In-reply-to: <200701131755.SAA29435@ultra.ap.krakow.pl>
References: <200701131755.SAA29435@ultra.ap.krakow.pl>
Reply-to: darrenr@reed.wattle.id.au
Sender: owner-ipfilter@coombs.anu.edu.au
User-agent: Thunderbird 1.5.0.5 (Windows/20060719) 
Jaroslaw Rafa wrote:
> Casper.Dik@Sun.COM napisal(a):
>   
>> That's a very "big" question as it covers many OSes.
>>
>> In Solaris, outgoing packets do carry quite a bit of information
>> (process credential and often the process ID)
>>     

I have to look into this some more...see what appeared with which
versions of solaris, etc.


> [...]
>   
>> It seems that in many OSes, such decisions would need to be made
>> at a higher level, e.g., in the connect() or sendto() system calls.
>>     
>
> Actually, I need it on Solaris 9. Can you point me to some ideas?
> And I'm still curious if it's possible to use "auth" and/or "preauth" rules
> in ipfilter in some way to achieve this? They are undocumented, and I don't
> know what can they be used for..
>   

"auth" rules are used for trapping packets into user space for
determining whether
or not to "pass", "block", "log", "keep state", etc, with a packet.

Darren
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: IPFilter 5.0.0 - feedback?, Jaroslaw Rafa
Next by Date:  Where did I go wrong?, mdpeters
Previous by Thread:  Re: IPFilter 5.0.0 - feedback?, Jaroslaw Rafa
Next by Thread:  Re: IPFilter 5.0.0 - feedback?, Jaroslaw Rafa
Indexes:  [Date] [Thread] [Top] [All Lists]