Re: RELATED connections and the feeling of security

To:	netfilter@lists.netfilter.org
Subject:	Re: RELATED connections and the feeling of security
From:	Pascal Hambourg <pascal.mail@plouf.fr.eu.org>
Date:	Fri, 13 Apr 2007 19:54:09 +0200
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	netfilter-list1@securepoint.com
In-reply-to:	<200704131457.59976.Hugo.Mildenberger@t-online.de>
List-archive:	</pipermail/netfilter>
List-help:	<mailto:netfilter-request@lists.netfilter.org?subject=help>
List-id:	General discussion and user questions <netfilter.lists.netfilter.org>
List-post:	<mailto:netfilter@lists.netfilter.org>
List-subscribe:	<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=subscribe>
List-unsubscribe:	<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>
Organization:	Plouf !
References:	<200704131202.27971.Hugo.Mildenberger@t-online.de> <1176463828.9361.14.camel@anduril.intranet.cartel-securite.net> <200704131457.59976.Hugo.Mildenberger@t-online.de>
Sender:	netfilter-bounces@lists.netfilter.org
User-agent:	Mozilla Thunderbird 1.0.6 (Windows/20050716)

Hello,

Hugo Mildenberger a écrit :

should the ftp-conntrack helper expose arbitrary ports onthe originating host?


Yes it should, for the following two reasons :
1) The host explicitly asked for it over the FTP control connection.

2) The firewall administrator allowed it by loading the FTP conntrackmodule.

<Prev in Thread]	Current Thread	[Next in Thread>
RELATED connections and the feeling of security, Hugo Mildenberger Re: RELATED connections and the feeling of security, Cedric Blancher Re: RELATED connections and the feeling of security, Hugo Mildenberger Re: RELATED connections and the feeling of security, Cedric Blancher Re: RELATED connections and the feeling of security, Hugo Mildenberger Re: RELATED connections and the feeling of security, Pascal Hambourg <= Re: RELATED connections and the feeling of security, Martijn Lievaart Re: RELATED connections and the feeling of security, Pascal Hambourg Re: RELATED connections and the feeling of security, tom

Previous by Date:	Inspection of Link Layer Packets?, John Dowling
Next by Date:	Re: RELATED connections and the feeling of security, tom
Previous by Thread:	Re: RELATED connections and the feeling of security, Hugo Mildenberger
Next by Thread:	Re: RELATED connections and the feeling of security, Martijn Lievaart
Indexes:	[Date] [Thread] [Top] [All Lists]