On Wed, Jul 10, 2002 at 10:36:51AM -0500, Matt Barton wrote:
-----BEGIN PGP SIGNED MESSAGE-----
On Tue, 9 Jul 2002, Peter C. Norton wrote:
That makes sense. Any idea how to do a "reject" with a Cisco access
list? As far as I know it's just accept or deny.
If its only accept or drop, you can always let it through and let your
mail host reject it.
That would work, but you would be opening up a hole through your firewall.
A malicious user that gained access to the server could setup a service on
that port and you wouldn't be the wiser.
True. If that is the overriding concern, then the poster should have
a firewall that can do better.
However, since its a mail server, an intruder that could get ahold of
a low port better communications channel then ident :)
The 5 year plan:
In five years we'll make up another plan.
Or just re-use this one.