Re: RELATED connections and the feeling of security

NetFilter

Re: RELATED connections and the feeling of security

To:	Pascal Hambourg <pascal.mail@plouf.fr.eu.org>
Subject:	Re: RELATED connections and the feeling of security
From:	Martijn Lievaart <m@rtij.nl>
Date:	Fri, 13 Apr 2007 21:51:17 +0200
Cc:	netfilter@lists.netfilter.org
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	netfilter-list1@securepoint.com
In-reply-to:	<461FC3C1.1090906@plouf.fr.eu.org>
List-archive:	</pipermail/netfilter>
List-help:	<mailto:netfilter-request@lists.netfilter.org?subject=help>
List-id:	General discussion and user questions <netfilter.lists.netfilter.org>
List-post:	<mailto:netfilter@lists.netfilter.org>
List-subscribe:	<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=subscribe>
List-unsubscribe:	<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>
References:	<200704131202.27971.Hugo.Mildenberger@t-online.de> <1176463828.9361.14.camel@anduril.intranet.cartel-securite.net> <200704131457.59976.Hugo.Mildenberger@t-online.de> <461FC3C1.1090906@plouf.fr.eu.org>
Sender:	netfilter-bounces@lists.netfilter.org
User-agent:	Thunderbird 1.5.0.10 (X11/20070302)

Pascal Hambourg wrote:

Hello,

Hugo Mildenberger a écrit :

should the ftp-conntrack helper expose arbitrary ports on the
originating host?


Yes it should, for the following two reasons :
1) The host explicitly asked for it over the FTP control connection.
2) The firewall administrator allowed it by loading the FTP conntrack
module.


No, not arbitrary ports. The port asked for in the port command should
be opened (and it is).

M4

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
RELATED connections and the feeling of security, Hugo Mildenberger Re: RELATED connections and the feeling of security, Cedric Blancher Re: RELATED connections and the feeling of security, Hugo Mildenberger Re: RELATED connections and the feeling of security, Cedric Blancher Re: RELATED connections and the feeling of security, Hugo Mildenberger Re: RELATED connections and the feeling of security, Pascal Hambourg Re: RELATED connections and the feeling of security, Martijn Lievaart <= Re: RELATED connections and the feeling of security, Pascal Hambourg Re: RELATED connections and the feeling of security, tom

Previous by Date:	Re: RELATED connections and the feeling of security, Hugo Mildenberger
Next by Date:	Re: RELATED connections and the feeling of security, Pascal Hambourg
Previous by Thread:	Re: RELATED connections and the feeling of security, Pascal Hambourg
Next by Thread:	Re: RELATED connections and the feeling of security, Pascal Hambourg
Indexes:	[Date] [Thread] [Top] [All Lists]