Firewall Wizards mailing list archives
Re: Looking for "lease based popper access"
From: sedwards () sedwards com
Date: Sun, 12 Dec 1999 16:14:40 -0800 (PST)
The IP address is not used for authentication. The idea is to limit a [l]user who will not be authenticted from even being able to establish a connection to the service -- if the "script kidz" can't connect, they can't hack. On Sun, 12 Dec 1999, Rodney van den Oever wrote:
I use tcp wrappers a lot when I configure client networks. I figure if the script kiddies can't connect, they can't do a lot of damage -- assuming tcp wrappers isn't exploitable :) This works pretty good for most services except POP. Traveling employees need to get to their email from where ever they are.Then use a SSH- or SSL-based encrypted tunnel as is often discussed on this list. You should not authenticate users based on their IP-address. -- Rodney van den Oever / +31 318 695558 / PGP Key ID 0x0A6CCE53 'Bother' said Pooh, as he called in an air strike.
Thanks in advance, ------------------------------------------------------------------------ Steve Edwards sedwards () sedwards com Voice: +1-760-723-2727 PST Newline Pager: +1-888-478-5085 Fax: +1-760-731-3000
Current thread:
- Re: Looking for "lease based popper access" Rodney van den Oever (Dec 13)
- Re: Looking for "lease based popper access" sedwards (Dec 13)
- RE: Looking for "lease based popper access" Dom De Vitto (Dec 17)
- <Possible follow-ups>
- RE: Looking for "lease based popper access" Jan van Rensburg (Dec 13)
- RE: Looking for "lease based popper access" R. DuFresne (Dec 14)
- RSAREF Patch Leonard Miyata (Dec 15)
- RSAREF bug issues (was Re: Looking for "lease based popper access") Bennett Todd (Dec 15)
- Re: RSAREF bug issues (was Re: Looking for "lease based popper access") R. DuFresne (Dec 17)
- RE: Looking for "lease based popper access" R. DuFresne (Dec 14)
- Re: Looking for "lease based popper access" sedwards (Dec 13)
- RE: Looking for "lease based popper access" Jan van Rensburg (Dec 15)
- Re: Looking for "lease based popper access" Steven M. Bellovin (Dec 15)