2010/6/22 Theo de Raadt <[email protected]>: > It is way too easy to misuse this. People who use it will reduce > security when they think they are increasing security.
2010/6/22 Henning Brauer <[email protected]>: > I am extremely sceptical about this. first thought is really - do it > in userland. Hm-m-m. Say creating uniproxyd(8) that uses divert(4), or sits on BPF, reusing some tcpdump(8) code - dunno what's better yet. It can even see some correlation between states... Sounds cool. But this can bring speed down a lot. :( Neverless, if this is the only right way (I understand, why) to do such things, I'll try. If anyone have any ideas regarding implementation, I'll be glad to listen. Thank you all who paid attention and responded! -- WBR, Vadim Zhukov
