Why admin's do not trust daemons to do their own packet filtering (was Re: Resuming the great cleanup)
Gary E. Miller
gem at rellim.com
Tue May 29 20:41:59 UTC 2018
Yo Richard!
On Tue, 29 May 2018 15:33:16 -0500
Richard Laager via devel <devel at ntpsec.org> wrote:
> On 05/29/2018 03:32 PM, Jason Azze via devel wrote:
> > I'd be pretty pissed off if, let's say, the Postfix or MySQL people
> > took this attitude. That's why I think I'm misunderstanding.
>
> FWIW, I agree. It's perfectly reasonable to list the interfaces to
> listen() or bind() to or whatever the call is.
+1. Very common for a host to have several interfaces. Some daemons use
one, some another.
RGDS
GARY
---------------------------------------------------------------------------
Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97703
gem at rellim.com Tel:+1 541 382 8588
Veritas liberabit vos. -- Quid est veritas?
"If you can’t measure it, you can’t improve it." - Lord Kelvin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ntpsec.org/pipermail/devel/attachments/20180529/2b42a387/attachment.bin>
More information about the devel
mailing list