Bugtraq mailing list archives
Re: UnixWare
From: mouse () collatz mcrcim mcgill edu (der Mouse)
Date: Wed, 27 Apr 1994 11:36:05 -0400
Also, is there a way to block people running FSP without blocking all udp packets or relying on blocking udp to certain ports? I may not be around full-time on this system, so it is conceivable for a user to set up their own fsp server in their home dir and not have me notice it for a few weeks or so.
Why would you _want_ to block that? That doesn't put your system at any more risk than it already is by allowing said user connectivity to the world of any sort, as far as I can see. Unless you have some users connecting via, say, dialup, that you want to restrict from all network access of any sort; in this case, the only effective measures I can see are either (a) a sufficiently restricted environment that they can't import arbitrary programs or (b) having the kernel refuse network services to them unconditionally. der Mouse mouse () collatz mcrcim mcgill edu
Current thread:
- Re: UnixWare, (continued)
- Re: UnixWare Michael Neuman (Apr 27)
- Re: UnixWare Gene Spafford (Apr 27)
- Re: UnixWare a.e.mossberg (Apr 28)
- Re: UnixWare Gene Spafford (Apr 28)
- Re: UnixWare David A. Curry (Apr 28)
- HP's security stance (was Re: UnixWare) Bennett Todd (Apr 28)
- Re: HP's security stance (was Re: UnixWare) Gene Spafford (Apr 28)
- Re: UnixWare Christopher Klaus (Apr 28)
- Re: UnixWare Gene Spafford (Apr 28)
- Re: UnixWare Michael Neuman (Apr 27)
- Re: UnixWare Perry E. Metzger (Apr 27)
- Re: UnixWare Bonfield James (Apr 28)
- Re: UnixWare Ron McDowell (Apr 27)
- Re: UnixWare Perry E. Metzger (Apr 27)
- Re: UnixWare Bennett Todd (Apr 27)