Re: [netatalk-admins] tcpwrapper

Subject: Re: [netatalk-admins] tcpwrapper
From: William LeFebvre (wnl@groupsys.com)
Date: Thu Mar 12 1998 - 15:58:07 EST

• Next message: Brian Eric Bothwell: "Re: [netatalk-admins] netatalk and OS 8.1"
• Previous message: Bill Studenmund: "Re: [netatalk-admins] tcpwrapper"
• In reply to: Bill Studenmund: "Re: [netatalk-admins] tcpwrapper"
• Next in thread: Oliver Wrede: "Re: [netatalk-admins] tcpwrapper"
• Reply: William LeFebvre: "Re: [netatalk-admins] tcpwrapper"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Bill wrote:
> > libwrap doesn't know what appletalk IS. Yes, this will only check
> > IP-based connections. Might be an interesting project to extend
> > libwrap to accomodate Appletalk, however...... :-)
>
> Why?
>
> ddp internets don't interconnect the way IP ones do (they aren't on the
> whole-planet scale). So all the ddp packets you'll get are from your
> neighboors, be they within your university or workplace. If you're having
> breakins from THEM, you've got REAL problems. :-)

Oh, so you trust all the undergrads with their in-dorm connections to
not try afp/ddp spoofing to break in to your Appletalk servers?

Most security experts (this includes physical security as well) agree
that the greatest threat usually lies within an organization.

I'm not saying that the threat really justifies extending libwrap, I
just thought it would be an interesting exercise.

                Bill

• Next message: Brian Eric Bothwell: "Re: [netatalk-admins] netatalk and OS 8.1"
• Previous message: Bill Studenmund: "Re: [netatalk-admins] tcpwrapper"
• In reply to: Bill Studenmund: "Re: [netatalk-admins] tcpwrapper"
• Next in thread: Oliver Wrede: "Re: [netatalk-admins] tcpwrapper"
• Reply: William LeFebvre: "Re: [netatalk-admins] tcpwrapper"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b28 : Sat Dec 18 1999 - 16:31:33 EST