Can you do stateful inspections on ntp though? It runs on udp. Is this possible? You can define what servers you will accept ntp from, but surely the source IP could be easily spoofed anyway. I don't know how you would go trying to do an auth transfer from, say, CSIRO. -- Howard. ____________________________________________________ LANNet Computing Associates <http://lannetlinux.com> "...well, it worked before _you_ touched it!" --me "I trust just one person, and there are times when I don't even trust myself" --me On Wed, 28 Feb 2001, Crossfire wrote: > This is what stateful inspection firewalls or very tight firewall > rulesets are for. Only accept NTP replies from systems you've > queried, that way they have to compromise the time server(s) too. -- SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/ More Info: http://slug.org.au/lists/listinfo/slug
- Re: [SLUG] Firewall security audit report Howard Lowndes
- Re: [SLUG] Firewall security audit report Umar Goldeli
- Re: [SLUG] Firewall security audit report chesty
- Re: [SLUG] Firewall security audit report Umar Goldeli
- Re: [SLUG] Firewall security audit report Terry Collins
- Re: [SLUG] Firewall security audit report chesty
- Re: [SLUG] Firewall security audit report Terry Collins
- Re: [SLUG] Firewall security audit report Umar Goldeli
- Re: [SLUG] Firewall security audit report chesty
- Re: [SLUG] Firewall security audit report Crossfire
- Re: [SLUG] Firewall security audit re... Howard Lowndes
- Re: [SLUG] Firewall security audi... Crossfire
- Re: [SLUG] Firewall security audi... Howard Lowndes
- Re: [SLUG] Firewall security audi... Crossfire
- Re: [SLUG] Firewall security audi... Umar Goldeli
- Re: [SLUG] Firewall security audi... Crossfire
- Re: [SLUG] Firewall security audi... Umar Goldeli
- Re: [SLUG] Firewall security audit report Umar Goldeli
- Re: [SLUG] Firewall security audit re... Howard Lowndes
- Re: [SLUG] Firewall security audi... Umar Goldeli
- Re: [SLUG] Firewall security audit re... chesty
