NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > FreeBSD Security> 2002-06

From: Crist J. Clark (crist.clarkattbi.com)
Date: Thu Jun 06 2002 - 14:25:40 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Jun 05, 2002 at 07:59:53PM +0200, Gerhard Sittig wrote:
> On Wed, Jun 05, 2002 at 12:50 +0200, Mario Pranjic wrote:
> >
> > I have rules for smb like this:
> > # samba
> > add 660 allow tcp from any to me 138,139,445 setup keep-state
> > add 661 pass udp from any 139 to me 139 keep-state
> ^^^ ^^^
>
> This is a typo, isn't it? netbios-ns uses 137/udp. And it
> mostly is run in broadcast mode, so I don't know how the "me"
> keywords disturbes (is too strict).

'me' does not match broadcast addresses.

-- Crist J. Clark | cjclark

alum.mit.edu | cjclark

jhu.edu http://people.freebsd.org/~cjc/ | cjc

freebsd.org

To Unsubscribe: send mail to majordomoFreeBSD.org with "unsubscribe freebsd-security" in the body of the message

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]