Firewall Wizards mailing list archives

Re: Looking for "lease based popper access"

From: sedwards () sedwards com
Date: Sun, 12 Dec 1999 16:14:40 -0800 (PST)

The IP address is not used for authentication. The idea is to limit a
[l]user who will not be authenticted from even being able to establish a
connection to the service -- if the "script kidz" can't connect, they
can't hack.

On Sun, 12 Dec 1999, Rodney van den Oever wrote:

I use tcp wrappers a lot when I configure client networks. I figure if the
script kiddies can't connect, they can't do a lot of damage -- assuming
tcp wrappers isn't exploitable :)

This works pretty good for most services except POP. Traveling employees
need to get to their email from where ever they are.



Then use a SSH- or SSL-based encrypted tunnel as is often discussed on this
list. You should not authenticate users based on their IP-address.

--
Rodney van den Oever / +31 318 695558 / PGP Key ID 0x0A6CCE53
'Bother' said Pooh, as he called in an air strike.


Thanks in advance,
------------------------------------------------------------------------
Steve Edwards      sedwards () sedwards com      Voice: +1-760-723-2727 PST
Newline            Pager: +1-888-478-5085           Fax: +1-760-731-3000

Current thread:

Re: Looking for "lease based popper access" Rodney van den Oever (Dec 13)
- Re: Looking for "lease based popper access" sedwards (Dec 13)
  - RE: Looking for "lease based popper access" Dom De Vitto (Dec 17)
- <Possible follow-ups>
- RE: Looking for "lease based popper access" Jan van Rensburg (Dec 13)
  - RE: Looking for "lease based popper access" R. DuFresne (Dec 14)
    - RSAREF Patch Leonard Miyata (Dec 15)
    - RSAREF bug issues (was Re: Looking for "lease based popper access") Bennett Todd (Dec 15)
    - Re: RSAREF bug issues (was Re: Looking for "lease based popper access") R. DuFresne (Dec 17)
- RE: Looking for "lease based popper access" Jan van Rensburg (Dec 15)
- Re: Looking for "lease based popper access" Steven M. Bellovin (Dec 15)