[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Controlling ports used by natd

Subject: Controlling ports used by natd
From: cswiger at mac.com (Charles Swiger)
Date: Sun Dec 14 11:41:01 2003

On Dec 12, 2003, at 7:19 PM, Barney Wolff wrote:
> I have a real philosophical problem with ceding ports to worms, viruses
> and trojans.  Where will it stop?  Portno is a finite resource.

This is a respectable position, but the notion of categorizing ranges 
of ports into an association with a security policy already exists: 
bindresvport().

Perhaps one could argue that this limitation isn't that meaningful now 
that it's unfortunately common for malware to be running with root 
privileges-- or the Windows equivalent, more likely.  Still, if you and 
your users don't run untrusted programs as root, system permissions 
will prevent malware from acting as a rogue 
DHCP/DNS/arp/routed/NMBD/whatever server, sniffing the local network, 
etc...all of which contributes to slowing down the opportunities for 
and rate at which a worm spreads.

-- 
-Chuck

Follow-Ups:
- Controlling ports used by natd
  - From: Barney Wolff

References:
- Controlling ports used by natd
  - From: Brett Glass
- Controlling ports used by natd
  - From: Barney Wolff
- Controlling ports used by natd
  - From: Brett Glass
- Controlling ports used by natd
  - From: Barney Wolff
- Controlling ports used by natd
  - From: Brett Glass
- Controlling ports used by natd
  - From: Barney Wolff
- Controlling ports used by natd
  - From: Brett Glass
- Controlling ports used by natd
  - From: Barney Wolff

Prev by Date: Fwd: 5.2-RC + ipfw
Next by Date: Controlling ports used by natd
Previous by thread: Controlling ports used by natd
Next by thread: Controlling ports used by natd
Index(es):
- Date
- Thread

Visit your host, monkey.org